Review Request 73149: RANGER-3153: Upgrade to TLS to version 1.2 and above

Sailaja Polavarapu Wed, 20 Jan 2021 12:05:42 -0800

-----------------------------------------------------------
This is an automatically generated e-mail. To reply, visit:
https://reviews.apache.org/r/73149/
-----------------------------------------------------------


Review request for ranger.


Bugs: RANGER-3153
    https://issues.apache.org/jira/browse/RANGER-3153


Repository: ranger


Description
-------

Changed ranger admin, usersync, and unixauthservices to use TLSv1.2 as the 
default version for ssl connections. Also removed older algorithms in the 
default configuration.


Diffs
-----

  
embeddedwebserver/src/main/java/org/apache/ranger/server/tomcat/EmbeddedServer.java
 757461da4 
  security-admin/src/main/resources/conf.dist/ranger-admin-default-site.xml 
fd957ca52 
  
ugsync/src/main/java/org/apache/ranger/ldapusersync/process/CustomSSLSocketFactory.java
 e97c477e5 
  unixauthservice/conf.dist/ranger-ugsync-default.xml 0f88aa3f3 
  
unixauthservice/src/main/java/org/apache/ranger/authentication/UnixAuthenticationService.java
 92eb22975 


Diff: https://reviews.apache.org/r/73149/diff/1/


Testing
-------

Pathced cluster with the changes and verified the ssl trace that ranger is 
using TLSv1.2.


Thanks,

Sailaja Polavarapu

Review Request 73149: RANGER-3153: Upgrade to TLS to version 1.2 and above

Reply via email to