[
https://issues.apache.org/jira/browse/AMBARI-26210?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Nihal Jain updated AMBARI-26210:
--------------------------------
Component/s: security
> For embedded hbase, AMBARI-METRICS silently sets up a non-secure hbase, even
> though security is enabled
> -------------------------------------------------------------------------------------------------------
>
> Key: AMBARI-26210
> URL: https://issues.apache.org/jira/browse/AMBARI-26210
> Project: Ambari
> Issue Type: Bug
> Components: ambari-metrics, security
> Reporter: Nihal Jain
> Priority: Major
>
> For hbase set up in embedded mode on a kerberized cluster ambari-metrics sets
> up a non distributed (i.e. embedded) hbase without security enabled.
> This is done silently. Operators might not be aware that they are running
> without security, even though configured. See relevant code
> [https://github.com/apache/ambari/blob/62818c7d92c480fb21f1a488ce671f67e16ecef0/ambari-server/src/main/resources/common-services/AMBARI_METRICS/3.0.0/package/scripts/params.py#L209]
> It suggests security can be enabled in only distributed hbase, so we should
> fail with unsupported exception and not let hbase embedded start if security
> is enabled
>
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
