-----------------------------------------------------------
This is an automatically generated e-mail. To reply, visit:
https://reviews.apache.org/r/53669/
-----------------------------------------------------------
Review request for Ambari and Robert Levas.
Bugs: AMBARI-18860
https://issues.apache.org/jira/browse/AMBARI-18860
Repository: ambari
Description
-------
LDAPS must be used to communicate with an Active Directory when Kerberos is
being enabled.
This should be verified on input by the backend to ensure that the proper
channel is open between Ambari and the Active Directory so Ambari can set and
update passwords when managing accounts in the Active Directory.
The LDAP URL, kerberos-env/ldap_url field must have the protocol set to ldaps
rather than ldap (or anything else). Ideally the port is set correctly, be we
cannot validate that since the LDAPS port can be changed.
Diffs
-----
ambari-server/src/main/java/org/apache/ambari/server/serveraction/kerberos/ADKerberosOperationHandler.java
48e04f4
ambari-server/src/test/java/org/apache/ambari/server/serveraction/kerberos/ADKerberosOperationHandlerTest.java
52cd372
Diff: https://reviews.apache.org/r/53669/diff/
Testing
-------
mvn clean test
Thanks,
Vitalyi Brodetskyi
