Details
-
New Feature
-
Status: In Progress
-
Critical
-
Resolution: Unresolved
-
None
-
None
-
None
Description
The next step to enhance Trafodion security is to seamlessly integrate within theSecure Hadoop eco-system.
Trafodion is installed on top of the Hadoop and supports authentication through OpenLDAP and authorization through Trafodion; however, Hadoop, by itself runs in a non-secure mode. This blueprint defines a task to configure Trafodion to run in with Secure Hadoop. When the secure mode is instrumented, each user and service will be authenticated by Kerberos which include all products Trafodion uses in its eco-system. The means that secure versions of Hadoop, HBase, Zookeeper, and others will be integrated.
Attachments
1.
|
Improve checks during Trafodion Kerberos Installation |
|
Closed | Roberta Marton |
2.
|
Securely store passwords for Trafodion use. |
|
Open | Unassigned |
3.
|
Fix a problem we have supporting a Kerberized Zookeeper. |
|
Open | Unassigned |
4.
|
Do not require Trafodion install to require Kerberos Admin access |
|
Open | Unassigned |
5.
|
Support Kerberos for a vanilla apache release. |
|
Open | Unassigned |
6.
|
Add Kerberos support to our test environment. |
|
Open | Steve Varnau |
7.
|
Fix issues using signed certificates |
|
Closed | Unassigned |
8.
|
Automate Kerberos ticket expiration and renewal for a cluster |
|
Closed | Roberta Marton |
9.
|
Update installation documentation for Kerberos |
|
Closed | Roberta Marton |
10.
|
Support conversion from secure to non-secure for Trafodion |
|
Open | Unassigned |
11.
|
Support Kerberos when adding nodes to the cluster |
|
Open | Yi (Eason) Zhang |
12.
|
Add kerberos support to the ambari integration |
|
Open | Unassigned |