Re: Exception while creating encryption zone

ought hdfs was not submitted to Ranger authorizations), and it was the root issue. Thanks a lot ! Regards, Loïc Loïc CHANEL System Big Data engineer MS - WASABI - Worldline (Villeurbanne, France) 2016-09-16 16:41 GMT+02:00 Velmurugan Periasamy <vperias...@hortonworks.com<mailto:vperias

Re: Exception while creating encryption zone

this ? Loïc CHANEL System Big Data engineer MS - WASABI - Worldline (Villeurbanne, France) 2016-09-16 16:20 GMT+02:00 Velmurugan Periasamy <vperias...@hortonworks.com<mailto:vperias...@hortonworks.com>>: Loïc: Can you make sure hdfs user has permissions for key operations (especially

Re: Need help in integrating apache-ranger-incubating-0.6.1

; Date: Thursday, September 15, 2016 at 8:49 PM To: Velmurugan Periasamy <v...@apache.org> Subject: Need help in integrating apache-ranger-incubating-0.6.1 Hi Vel, We are trying to evaluate Apache Ranger for our Hadoop security policies. It is failing while building from source code

Re: Exception while creating encryption zone

Loïc: Can you make sure hdfs user has permissions for key operations (especially GENERATE_EEK and GET_METADATA) and try again? Thank you, Vel From: Loïc Chanel > Reply-To:

CVE update (CVE-2016-5395) - Fixed in Apache Ranger 0.6.1

Hello: Here¹s a CVE update for Ranger 0.6.1 release. Please see below details. Release details can be found at https://cwiki.apache.org/confluence/display/RANGER/0.6.1+Release+-+Apache+Ra nger Thank you, Velmurugan Periasamy

Re: Ranger-0.6 HDFS authentication failed in secure mode

Error you posted seems to be related to test connection failing, not download policy issue. @Sailaja - can you please chime in for the decrypt password issue? Can you please share 1] your HDFS repository configuration 2] any errors in ranger log during the download policy from HDFS plugin

Re: HDFS Plugin - Unable to get listing of files for directory [/] from Hadoop environment

I set: Hadoop.rpc.protection = - Then in HDFS plugin: Namenode URL = hdfs://hdpmaster01:8020 RPC Protection Type = Authentication The above works. It seems it is the HA configuration that is a problem. Will it work with NameNode HA? Is there any risk for it not being configured to HA? Thanks. Fr

Re: HDFS Plugin - Unable to get listing of files for directory [/] from Hadoop environment

Dale: Could you set hadoop.rpc.protection to authentication and try? Thank you, Vel From: Dale Bradman > Reply-To: "user@ranger.incubator.apache.org"

CVE update (CVE-2016-2174) - Fixed in Ranger 0.5.3

Hello: Here’s a CVE update for Ranger 0.5.3 release. Please see below details. Release details can be found at https://cwiki.apache.org/confluence/display/RANGER/0.5.3+Release+-+Apache+Ranger Thank you, Velmurugan Periasamy

Re: Problem setting up the SSL for Ranger usersync

Since the error is on usersync side, problem could be in accessing either usersync key store or trust store.Please verify the below. 1] usersync is using the right key store. Key password and Store password have to be the same. 2] usersync is using the right trust store. If not using the

Re: Ranger does not take into account the logging properties from ambari

This is a bug that is fixed in Ranger 0.6.0 - https://issues.apache.org/jira/browse/RANGER-859 As a workaround, you can create symlinks under /var/log/ranger to point to From: Lune Silver > Reply-To:

Re: Informationn about properties of Ranger

Lune – unix auth service running as part of usersync is applicable only if unix authentication method is chosen in ranger admin. For LDAP/AD authentication methods, ranger admin will authenticate the user directly against LDAP/AD. From: Lune Silver

Re: Need Help to choose Apache Ranger

Thanks Bosco for the explanation. Adding Ranger Dev group. From: Don Bosco Durai > Reply-To: "user@ranger.incubator.apache.org" > Date:

Re: [Discuss] Phasing support for DB audit

https://issues.apache.org/jira/browse/RANGER-271 addressed the migration utility. https://issues.apache.org/jira/browse/RANGER-900 is created for removing DB audit support. On 3/23/16, 1:52 AM, "Don Bosco Durai" wrote: >+1 > > >I suggest that we provide utility to migrate

CVE update (CVE-2016-0735) - Fixed in Ranger 0.5.2

Hello: Here¹s a CVE update for Ranger 0.5.2 release. Please see below details. Thank you, Velmurugan Periasamy -- CVE-2016-0735: Ranger policy excludes flags processing

Re: [Discuss] Phasing support for DB audit

Hi Balaji: I agree storing audit data in DB is not scalable for long term data. What would be the path forward for users who are already using DB to store audit data and managing the DB themselves? Adding user@ranger list. Thank you, Vel On 3/8/16, 3:19 PM, "Balaji Ganesan"

Re: ranger-admin setup failed

.org>> Date: Saturday, November 28, 2015 at 8:34 AM To: "user@ranger.incubator.apache.org<mailto:user@ranger.incubator.apache.org>" <user@ranger.incubator.apache.org<mailto:user@ranger.incubator.apache.org>> Subject: Re: ranger-admin setup failed i am using apache

Re: ranger-admin setup failed

failed thanks, I am waiting for the solution On Sat, Nov 28, 2015 at 7:16 PM, Velmurugan Periasamy <vperias...@hortonworks.com<mailto:vperias...@hortonworks.com>> wrote: Thanks for reporting the issue Hafiz. This issue needs to be fixed. I have created https://issues.apache.org/jira/bro