----------------------------------------------------------- This is an automatically generated e-mail. To reply, visit: https://reviews.apache.org/r/53669/#review155705 -----------------------------------------------------------
Ship it! Ship It! - Robert Levas On Nov. 11, 2016, 6:13 a.m., Vitalyi Brodetskyi wrote: > > ----------------------------------------------------------- > This is an automatically generated e-mail. To reply, visit: > https://reviews.apache.org/r/53669/ > ----------------------------------------------------------- > > (Updated Nov. 11, 2016, 6:13 a.m.) > > > Review request for Ambari and Robert Levas. > > > Bugs: AMBARI-18860 > https://issues.apache.org/jira/browse/AMBARI-18860 > > > Repository: ambari > > > Description > ------- > > LDAPS must be used to communicate with an Active Directory when Kerberos is > being enabled. > This should be verified on input by the backend to ensure that the proper > channel is open between Ambari and the Active Directory so Ambari can set and > update passwords when managing accounts in the Active Directory. > The LDAP URL, kerberos-env/ldap_url field must have the protocol set to ldaps > rather than ldap (or anything else). Ideally the port is set correctly, be we > cannot validate that since the LDAPS port can be changed. > > > Diffs > ----- > > > ambari-server/src/main/java/org/apache/ambari/server/serveraction/kerberos/ADKerberosOperationHandler.java > 48e04f4 > > ambari-server/src/test/java/org/apache/ambari/server/serveraction/kerberos/ADKerberosOperationHandlerTest.java > 52cd372 > > Diff: https://reviews.apache.org/r/53669/diff/ > > > Testing > ------- > > mvn clean test > > > Thanks, > > Vitalyi Brodetskyi > >
