[RANGER-977] Ranger KMS default policies should include hdfs & hive - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Bug
Status: Resolved
Priority: Major
Resolution: Fixed
Affects Version/s: 0.5.0
Fix Version/s: 0.6.0
Component/s: Ranger
Labels:
None

Description

Currently when Ranger KMS is installed, only keyadmin user has the permissions.
Users have to manually create user nn and assign policies for this user for the encryption zone creation to work. This should be added by default. Also nn is a kerberos principal which should be mapped to hdfs user, for which default policy should be added after KMS is installed. (with generate_eek and get_matadata operations). Investigate why KMS is not performing this mapping and resolve it. In addition address this use-case for making hive encryption zones work as well.

Attachments

- Sort By Name
- Sort By Date
- Ascending
- Descending

0001-RANGER-977-Adding-hdfs-and-hive-policy-items-while-c.patch
19/May/16 05:48
20 kB
Velmurugan Periasamy

Issue Links

links to

Review request link

Activity

People

Assignee:: Sailaja Polavarapu

Reporter:: Sailaja Polavarapu

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Dates

Created:: 09/May/16 17:13

Updated:: 01/Jun/16 20:00

Resolved:: 01/Jun/16 20:00