Configure authentication with LDAP/Active Directory
Overview
Ranger allows you to add an extra source for Ranger Admin authentication. It can be an LDAP or Active Directory one.
IMPORTANT
Only one extra type of authentication can be enabled at a time.
|
You can see the logs for login attempts in the var/log/ranger/admin/<ranger_host>.log file, where <ranger_host>
is a host on which Ranger is installed.
LDAP authentication configuration
To configure an LDAP authentication source, follow the steps below:
-
On the Clusters page, click the name of your ADPS cluster, head to the Services tab, and click Ranger.
-
In the configuration parameters, find LDAP sync source for Ranger Admin authentication and activate it. After that, fill in the LDAP parameters (see Configuration parameters → Ranger → LDAP sync source for Ranger Admin authentication) and click Save.
LDAP parameters -
Restart Ranger (on your ADPS cluster’s Services page, launch the Restart action for Ranger).
Active Directory authentication configuration
To configure an Active Directory authentication source, follow the steps below:
-
On the Clusters page, click the name of your ADPS cluster, head to the Services tab, and click Ranger.
-
In the configuration parameters, find Active Directory sync source for Ranger Admin authentication and activate it. After that, fill in the AD parameters (see Configuration parameters → Ranger → Active Directory sync source for Ranger Admin authentication) and click Save.
Active Directory parameters -
Restart Ranger: on your ADPS cluster’s Services page, launch the Restart action for Ranger.