[
https://issues.apache.org/jira/browse/RANGER-2650?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Dhaval B. SHAH updated RANGER-2650:
-----------------------------------
Description:
If authentication type is simple, we do add public group to default policy
item. Any user setting up Ranger in simple mode and after that enabling
Kerberos on that cluster will have this extra policy providing public group all
permissions on Kafka.
We shouldn't be adding public group to default policies neither in simple mode
nor in kerberos.
was:
If authentication type is simple, we do add public group to default policy
item. Any user setting up Ranger in simple mode and after that enabling
Kerberos on that cluster will have this extra policy providing public group all
permissions on Kafka.
We shouldn't be adding public group to default policies neither is simple mode
nor in kerberos.
> Public group should not be given access to all kafka resources in default
> ranger policies
> -----------------------------------------------------------------------------------------
>
> Key: RANGER-2650
> URL: https://issues.apache.org/jira/browse/RANGER-2650
> Project: Ranger
> Issue Type: Bug
> Components: Ranger
> Reporter: Dhaval B. SHAH
> Assignee: Dhaval B. SHAH
> Priority: Major
>
> If authentication type is simple, we do add public group to default policy
> item. Any user setting up Ranger in simple mode and after that enabling
> Kerberos on that cluster will have this extra policy providing public group
> all permissions on Kafka.
> We shouldn't be adding public group to default policies neither in simple
> mode nor in kerberos.
--
This message was sent by Atlassian Jira
(v8.3.4#803005)
