[jira] [Updated] (RANGER-2650) Public group should not be given access to all kafka resources in default ranger policies

Velmurugan Periasamy (Jira) Tue, 26 Nov 2019 05:07:04 -0800


     [ 
https://issues.apache.org/jira/browse/RANGER-2650?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]


Velmurugan Periasamy updated RANGER-2650:
-----------------------------------------
    Fix Version/s: 2.1.0

> Public group should not be given access to all kafka resources in default 
> ranger policies
> -----------------------------------------------------------------------------------------
>
>                 Key: RANGER-2650
>                 URL: https://issues.apache.org/jira/browse/RANGER-2650
>             Project: Ranger
>          Issue Type: Bug
>          Components: Ranger
>            Reporter: Dhaval B. SHAH
>            Assignee: Dhaval B. SHAH
>            Priority: Major
>             Fix For: 2.1.0
>
>
> If authentication type is simple, we do add public group to default policy 
> item.  Any user setting up Ranger in simple mode and after that enabling 
> Kerberos on that cluster will have this extra policy providing public group 
> all permissions on Kafka. 
> We shouldn't be adding public group to default policies neither in simple 
> mode nor in kerberos.



--
This message was sent by Atlassian Jira
(v8.3.4#803005)

[jira] [Updated] (RANGER-2650) Public group should not be given access to all kafka resources in default ranger policies

Reply via email to