Uploaded image for project: 'CDH (READ-ONLY)'
  1. CDH (READ-ONLY)
  2. DISTRO-603

Hive should support additional LDAP authentication parameters

          Details

          • Type: Bug
          • Status: Resolved
          • Priority: Major
          • Resolution: Duplicate
          • Affects Version/s: CDH 5.0.1
          • Fix Version/s: None
          • Component/s: Hive
          • Labels:
          • Release Note:
            An ASF jira for Hive project is created HIVE-7193. This internal jira is links the problem to the external jira.

            Description

            Currently hive has only following authenticator parameters for LDAP
            authentication for hiveserver2.
            <property>
            <name>hive.server2.authentication</name>
            <value>LDAP</value>
            </property>
            <property>
            <name>hive.server2.authentication.ldap.url</name>
            <value>ldap://our_ldap_address</value>
            </property>
            We need to include other LDAP properties as part of hive-LDAP authentication like below
            a group search base -> dc=domain,dc=com
            a group search filter -> member=

            {0}
            a user search base -> dc=domain,dc=com
            a user search filter -> sAMAAccountName={0}

            a list of valid user groups -> group1,group2,group3

              Attachments

                Activity

                  People

                  • Assignee:
                    Unassigned
                    Reporter:
                    mkempanna Mala Chikka Kempanna
                  • Votes:
                    0 Vote for this issue
                    Watchers:
                    0 Start watching this issue

                    Dates

                    • Created:
                      Updated:
                      Resolved: