[jira] [Commented] (RANGER-1664) Add-ons to support ADLS in Ranger Authorization Model
[ https://issues.apache.org/jira/browse/RANGER-1664?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=16530811#comment-16530811 ] Balaji Ganesan commented on RANGER-1664: [~ankothap] How does this work exactly? Do we have a Ranger plugin for ADLS? > Add-ons to support ADLS in Ranger Authorization Model > - > > Key: RANGER-1664 > URL: https://issues.apache.org/jira/browse/RANGER-1664 > Project: Ranger > Issue Type: Bug > Components: Ranger >Reporter: Anandsagar Kothapalli >Priority: Major > > Add-ons to support Azure Data Lakes (ADLS) in Ranger Authorization Model. > This will gives an option to add ADLS as Service in the Ranger. > In ranger-admin-site.xml the parameter to include is > ranger.supportedcomponents=tag,hdfs,hbase,hive,kms,knox,storm,yarn,kafka,solr,atlas,wasb,adls > > This will add the ADLS ServiceDef along with other services to Ranger. -- This message was sent by Atlassian JIRA (v7.6.3#76005)
[jira] [Commented] (RANGER-1974) Ranger Authorizer and Audits for AWS S3
[ https://issues.apache.org/jira/browse/RANGER-1974?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=16356337#comment-16356337 ] Balaji Ganesan commented on RANGER-1974: [~srikvenk] Thanks for creating this. I believe we have a similar requirement in [Ranger-1300|https://issues.apache.org/jira/browse/RANGER-1300], though we have not progressed beyond initial discussions. Should we merge the 2 tickets? cc [~GodenYao] [~aloklal99] [~bosco] > Ranger Authorizer and Audits for AWS S3 > > > Key: RANGER-1974 > URL: https://issues.apache.org/jira/browse/RANGER-1974 > Project: Ranger > Issue Type: New Feature > Components: Ranger >Reporter: Srikanth Venkat >Priority: Blocker > > As an enterprise security admin, I need to be able to define and manage > authorization policies for data stored in AWS S3 so that I can manage my > access control and authorization entitlements in hybrid and cloud > environments along with other data in platforms that Ranger currently > authorizes. This feature will should allow interoperability with AWS IAM > policies and be able to gather audits from the native cloud audit > capabilities such as via AWS CloudTrail. > Implementation considerations: > # AWS S3 IAM information: https://aws.amazon.com/documentation/iam/ > # AWS CloudTrail information: > https://aws.amazon.com/documentation/cloudtrail/ > # This could be a policy mapping or sync mechanism (either online or > offline) that will allow Ranger policy conditions, and user/group/role or > other policy elements to be mapped to what is available in AWS IAM. This > might entail having a different model where the Ranger plugin might not be > running in the cloud native service and might require a proxy or other > paradigms to be effective. -- This message was sent by Atlassian JIRA (v7.6.3#76005)
