[
https://issues.apache.org/jira/browse/AMBARI-17221?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Alejandro Fernandez updated AMBARI-17221:
-----------------------------------------
Description:
LDAP/AD authentication to Atlas was added in ATLAS-869. Ambari should support
Smart configs for Atlas to either use LDAP or AD.
Following configurations should be shown only when
"atlas.authentication.method.ldap.type" is set to "ldap":
- atlas.authentication.method.ldap.url=
- atlas.authentication.method.ldap.userDNpattern=uid=
- atlas.authentication.method.ldap.groupSearchBase=
- atlas.authentication.method.ldap.groupSearchFilter=
- atlas.authentication.method.ldap.groupRoleAttribute=cn
- atlas.authentication.method.ldap.base.dn=
- atlas.authentication.method.ldap.bind.dn=
- atlas.authentication.method.ldap.bind.password=
- atlas.authentication.method.ldap.referral=ignore
- atlas.authentication.method.ldap.user.searchfilter=
- atlas.authentication.method.ldap.default.role=ROLE_USER
Following configurations should be shown only when
"atlas.authentication.method.ldap.type" is set to "ad":
- atlas.authentication.method.ldap.ad.domain=
- atlas.authentication.method.ldap.ad.url=
- atlas.authentication.method.ldap.ad.base.dn=
- atlas.authentication.method.ldap.ad.bind.dn=
- atlas.authentication.method.ldap.ad.bind.password=
- atlas.authentication.method.ldap.ad.referral=ignore
- atlas.authentication.method.ldap.ad.user.searchfilter=(sAMAccountName={0})
- atlas.authentication.method.ldap.ad.default.role=ROLE_USER
was:
LDAP/AD authentication to Atlas was added in ATLAS-869. Ambari should be
updated to to support following configurations needed for this feature. Please
note there are couple of properties containing passwords. Any
guidance/references from Ambari on securing these values?
Following configurations should be shown only when
"atlas.authentication.method.ldap.type" is set to "ldap":
- atlas.authentication.method.ldap.url=
- atlas.authentication.method.ldap.userDNpattern=uid=
- atlas.authentication.method.ldap.groupSearchBase=
- atlas.authentication.method.ldap.groupSearchFilter=
- atlas.authentication.method.ldap.groupRoleAttribute=cn
- atlas.authentication.method.ldap.base.dn=
- atlas.authentication.method.ldap.bind.dn=
- atlas.authentication.method.ldap.bind.password=
- atlas.authentication.method.ldap.referral=ignore
- atlas.authentication.method.ldap.user.searchfilter=
- atlas.authentication.method.ldap.default.role=ROLE_USER
Following configurations should be shown only when
"atlas.authentication.method.ldap.type" is set to "ad":
- atlas.authentication.method.ldap.ad.domain=
- atlas.authentication.method.ldap.ad.url=
- atlas.authentication.method.ldap.ad.base.dn=
- atlas.authentication.method.ldap.ad.bind.dn=
- atlas.authentication.method.ldap.ad.bind.password=
- atlas.authentication.method.ldap.ad.referral=ignore
- atlas.authentication.method.ldap.ad.user.searchfilter=(sAMAccountName={0})
- atlas.authentication.method.ldap.ad.default.role=ROLE_USER
> Atlas Integration: configurations to support LDAP/AD authentication
> -------------------------------------------------------------------
>
> Key: AMBARI-17221
> URL: https://issues.apache.org/jira/browse/AMBARI-17221
> Project: Ambari
> Issue Type: Bug
> Reporter: Madhan Neethiraj
> Assignee: Tom Beerbower
> Priority: Critical
> Fix For: 2.4.0
>
>
> LDAP/AD authentication to Atlas was added in ATLAS-869. Ambari should support
> Smart configs for Atlas to either use LDAP or AD.
> Following configurations should be shown only when
> "atlas.authentication.method.ldap.type" is set to "ldap":
> - atlas.authentication.method.ldap.url=
> - atlas.authentication.method.ldap.userDNpattern=uid=
> - atlas.authentication.method.ldap.groupSearchBase=
> - atlas.authentication.method.ldap.groupSearchFilter=
> - atlas.authentication.method.ldap.groupRoleAttribute=cn
> - atlas.authentication.method.ldap.base.dn=
> - atlas.authentication.method.ldap.bind.dn=
> - atlas.authentication.method.ldap.bind.password=
> - atlas.authentication.method.ldap.referral=ignore
> - atlas.authentication.method.ldap.user.searchfilter=
> - atlas.authentication.method.ldap.default.role=ROLE_USER
> Following configurations should be shown only when
> "atlas.authentication.method.ldap.type" is set to "ad":
> - atlas.authentication.method.ldap.ad.domain=
> - atlas.authentication.method.ldap.ad.url=
> - atlas.authentication.method.ldap.ad.base.dn=
> - atlas.authentication.method.ldap.ad.bind.dn=
> - atlas.authentication.method.ldap.ad.bind.password=
> - atlas.authentication.method.ldap.ad.referral=ignore
> - atlas.authentication.method.ldap.ad.user.searchfilter=(sAMAccountName={0})
> - atlas.authentication.method.ldap.ad.default.role=ROLE_USER
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
