[
https://issues.apache.org/jira/browse/AMBARI-12782?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Gautam Borad updated AMBARI-12782:
----------------------------------
Attachment: AMBARI-12782.patch
> Handle file permissions for jceks file in umask 027
> ---------------------------------------------------
>
> Key: AMBARI-12782
> URL: https://issues.apache.org/jira/browse/AMBARI-12782
> Project: Ambari
> Issue Type: Bug
> Affects Versions: 2.1.1
> Reporter: Gautam Borad
> Assignee: Gautam Borad
> Fix For: 2.1.2
>
> Attachments: AMBARI-12782.patch
>
>
> # Handle : cd_access='a' for /etc/ranger/ (when jceks files are created)
> ** Audit to DB fails in a case if Ranger is not installed on same host as
> that of component host.
> ** For example Ranger is running on Host1 and Hiveserver2 is running on
> Host2. Then as /etc/ranger/<repository_name> gets created and has owner as
> hive user. However, due to umask setting /etc/ranger gets 750 permission with
> root:root as owner:group.
> ** Due to this when hive user tries to read the jceks file to generate audits
> to DB - it gets permission denied error.
> # rectifying ranger_audit_db passwd to be used while creating jceks for
> Ranger Audit DB
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
