![](https://img-blog.csdnimg.cn/20201014180756738.png?x-oss-process=image/resize,m_fixed,h_64,w_64)
Ranger
源神
天道酬勤
展开
-
Ranger错误:Unable to connect to Hive Thrift Server instance..
Ranger测试hive连接错误提示:org.apache.ranger.plugin.client.HadoopException: Unable to connect to Hive Thrift Server instance.. Unable to connect to Hive Thrift Server instance.. Could not open client tr原创 2017-11-02 10:09:26 · 4587 阅读 · 1 评论 -
Ranger用户使用手册
链接:https://cwiki.apache.org/confluence/display/RANGER/Apache+Ranger+0.5+-+User+Guide转载 2017-11-02 10:18:24 · 4547 阅读 · 0 评论 -
Ranger配置HDFS报错:curl: (3) [globbing] nested braces not supported at pos 2
Ambari上显示错误信息: 2017-11-06 13:01:00,618 - Will retry 65 time(s), caught exception: (u"Execution of 'curl --location-trusted -k --negotiate -u : -b /var/lib/ambari-agent/tmp/cookies/ad58a07f-ffbc-473f原创 2017-11-06 14:14:30 · 13707 阅读 · 0 评论 -
Ranger Restful API操作用户user和群组group接口
1、创建用户curl -u admin:admin -v -i -s -X POST -H "Accept: application/json" -H "Content-Type: application/json" http://:6080/service/xusers/secure/users -d@userfile.json注明:@userfile.json文件也可以用json格原创 2017-11-23 17:43:16 · 6090 阅读 · 0 评论 -
大数据安全:Ranger与Sentry使用区别
近期在研究大数据安全领域,从使用形式上简单来说:Sentry:RBAC(role-based acess control)基于角色的管理,比如Cloudera用的是Sentry,华为的FusionInsight也采用类似的机制。即:通过创建角色,将每个组件的权限授予给此角色。然后在用户中添加此角色,即用户具备此角色访问组件的权限(组也类似)Ranger: PBAC(policy原创 2017-11-22 13:09:22 · 9018 阅读 · 0 评论 -
Ranger UI报错:Defective token detected (Mechanism level: GSSHeader did not find the right tag)
打开Ranger网页(默认6080端口)报错:HTTP ERROR: 403 Problem accessing /. Reason: GSSException: Defective token detected (Mechanism level: GSSHeader did not find the right tag)原因:有可能是JDK版本问题,这个是因为个人忘记解压JCE到JRE中,操...原创 2018-03-02 10:41:24 · 2996 阅读 · 0 评论 -
Ranger Admin启动不了
1、检查下配置是否正确,特别是Ranger DB host和JDBC connect string for a Ranger database如果用了rangerdba用户,授权:CREATE USER 'rangerdba'@'localhost' IDENTIFIED BY 'rangerdba';GRANT ALL PRIVILEGES ON *.* TO 'rangerdba'@'lo...原创 2018-03-02 11:10:01 · 2516 阅读 · 0 评论 -
Ambari—Ranger配置Ranger Admin HA(五)
1、Ranger5.1 先决条件(1)将keystore/truststore文件(/etc/security/serverKeys)复制到其他位置(例如/etc/<component>/conf)。(2)确保JKS文件名是唯一的。(3)确保应用了正确的权限。(4)确保密码是安全的5.2 配置Ranger Admin HA(无SSL)(1)使用Ambari启用Ranger Admin ...原创 2018-03-06 14:35:58 · 4365 阅读 · 3 评论