ranger-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Colm O hEigeartaigh <cohei...@apache.org>
Subject Re: Review Request 61173: Hive testConnection failed after used ldap authentication in Hive
Date Thu, 27 Jul 2017 12:02:01 GMT

-----------------------------------------------------------
This is an automatically generated e-mail. To reply, visit:
https://reviews.apache.org/r/61173/#review181554
-----------------------------------------------------------


Ship it!




Ship It!

- Colm O hEigeartaigh


On July 27, 2017, 7:22 a.m., Qiang Zhang wrote:
> 
> -----------------------------------------------------------
> This is an automatically generated e-mail. To reply, visit:
> https://reviews.apache.org/r/61173/
> -----------------------------------------------------------
> 
> (Updated July 27, 2017, 7:22 a.m.)
> 
> 
> Review request for ranger, Alok Lal, Ankita Sinha, Don Bosco Durai, Colm O hEigeartaigh,
Gautam Borad, Madhan Neethiraj, Ramesh Mani, Selvamohan Neethiraj, and Velmurugan Periasamy.
> 
> 
> Bugs: RANGER-1713
>     https://issues.apache.org/jira/browse/RANGER-1713
> 
> 
> Repository: ranger
> 
> 
> Description
> -------
> 
> Hive testConnection failed after open ldap authentication in Hive.
> 
> Scenarios 
> 1.when Hive used SIIMPLE authentication testConnection is ok.
> 2.When Hive used LDAP authentication testConnection is failed. 
> Modify Hive-site.xml
> <property>
> <name>hive.server2.authentication</name>
> <value>LDAP</value>
> </property>
> <property>
> <name>hive.server2.authentication.ldap.url</name>
> <value>ldap://192.168.10.101 ldap://192.168.10.102</value>
> <description>
> LDAP connection URL
> </description>
> </property><property>
> <name>hive.server2.authentication.ldap.baseDN</name>
> <value>ou=People,dc=hive,dc=com</value>
> <description>
> LDAP base DN
> </description>
> </property>
> Result:
> Unable to retrieve any files using given parameters, You can still save the repository
and start creating policies, but you would not be able to use autocomplete for resource names.
Check ranger_admin.log for more info.
> org.apache.ranger.plugin.client.HadoopException: Unable to connect to Hive Thrift Server
instance.. Unable to connect to Hive Thrift Server instance.. 
> Could not open client transport with JDBC Uri: jdbc:hive2://10.43.182.241:10000: Peer
indicated failure: Error validating the login. Peer indicated failure: Error validating the
login.
> 
> 3. Reason: Connection parameter password is incorrect .(Do not need to undertake the
MD5 encryption password).
> 
> 4. Solution: use MD5 decryption password.
> 
> 
> Diffs
> -----
> 
>   hive-agent/src/main/java/org/apache/ranger/services/hive/client/HiveClient.java e442aef

> 
> 
> Diff: https://reviews.apache.org/r/61173/diff/1/
> 
> 
> Testing
> -------
> 
> Tested it.
> 
> 
> Thanks,
> 
> Qiang Zhang
> 
>


Mime
  • Unnamed multipart/alternative (inline, None, 0 bytes)
View raw message