[jira] [Commented] (ATLAS-3901) AD user default role

2020-07-23 Thread theo11 (Jira) 


[ 
https://issues.apache.org/jira/browse/ATLAS-3901?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17163244#comment-17163244
 ] 

theo11 commented on ATLAS-3901:
---

Thank you for your response. If I understand you correctly, I can bind user to 
a group like:

 "userRoles": {

"theoad":  [ "DATA_STEWARD" ]

},

But of course this requires additional effort to maintain the list manually. Is 
there any example of how to sync AD users to a group automatically?

> AD user default role
> 
>
> Key: ATLAS-3901
> URL: https://issues.apache.org/jira/browse/ATLAS-3901
> Project: Atlas
>  Issue Type: Bug
>Reporter: theo11
>Priority: Major
>
> Hello,
> I'm having trouble to set up AD users to be correctly binded to DATA_STEWARD 
> role. Login works correctly, but user has no permissions like relationships 
> etc.
> Needed property in atlas-application.properties is set as follows:
> atlas.authentication.method.ldap.ad.default.role=DATA_STEWARD
> All roles are defaults from atlas-simple-authz-policy.json. There are no 
> related error entries in Atlas log.
> Could you advice?



--
This message was sent by Atlassian Jira
(v8.3.4#803005)

[jira] [Commented] (ATLAS-3901) AD user default role

2020-07-22 Thread Nixon Rodrigues (Jira) 


[ 
https://issues.apache.org/jira/browse/ATLAS-3901?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17162689#comment-17162689
 ] 

Nixon Rodrigues commented on ATLAS-3901:


[~theo11],

Atlas lookup for user group from local os linux  user group or from 
hadoopUserGroup mapping.
Please sync/map your AD users to os users / hadoop usergroup, so that groups 
are read correctly.

> AD user default role
> 
>
> Key: ATLAS-3901
> URL: https://issues.apache.org/jira/browse/ATLAS-3901
> Project: Atlas
>  Issue Type: Bug
>Reporter: theo11
>Priority: Major
>
> Hello,
> I'm having trouble to set up AD users to be correctly binded to DATA_STEWARD 
> role. Login works correctly, but user has no permissions like relationships 
> etc.
> Needed property in atlas-application.properties is set as follows:
> atlas.authentication.method.ldap.ad.default.role=DATA_STEWARD
> All roles are defaults from atlas-simple-authz-policy.json. There are no 
> related error entries in Atlas log.
> Could you advice?



--
This message was sent by Atlassian Jira
(v8.3.4#803005)