ambari-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Hudson (JIRA)" <j...@apache.org>
Subject [jira] [Commented] (AMBARI-7799) Add Knox kerberos setup to the existing Ambari security capabilities
Date Thu, 23 Oct 2014 21:10:33 GMT

    [ https://issues.apache.org/jira/browse/AMBARI-7799?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14181973#comment-14181973
] 

Hudson commented on AMBARI-7799:
--------------------------------

SUCCESS: Integrated in Ambari-branch-1.7.0 #195 (See [https://builds.apache.org/job/Ambari-branch-1.7.0/195/])
AMBARI-7799. Add Knox kerberos setup to the existing Ambari security capabilities. (jaimin)
(jaimin: http://git-wip-us.apache.org/repos/asf?p=ambari.git&a=commit&h=a7a96001384d917cb951e8a7784f975eab5a59f0)
* ambari-web/app/controllers/main/admin/security.js
* ambari-web/test/data/secure_mapping_test.js
* ambari-web/app/controllers/main/admin/security/add/step2.js
* ambari-web/app/messages.js
* ambari-server/src/main/resources/stacks/HDP/2.2/services/KNOX/package/files/validateKnoxStatus.py
* ambari-web/app/data/HDP2/secure_properties.js
* ambari-web/app/data/HDP2/secure_mapping.js
* ambari-server/src/main/resources/stacks/HDP/2.2/services/KNOX/package/scripts/params.py
* ambari-web/app/data/secure_mapping.js
* ambari-web/test/controllers/main/admin/security/add/addSecurity_controller_test.js
* ambari-server/src/main/resources/stacks/HDP/2.2/services/KNOX/package/templates/krb5JAASLogin.conf.j2
* ambari-web/app/app.js
* ambari-web/app/assets/test/tests.js
* ambari-server/src/main/resources/stacks/HDP/2.2/services/KNOX/package/scripts/knox.py
* ambari-server/src/main/resources/stacks/HDP/2.2/services/KNOX/package/scripts/service_check.py
* ambari-web/test/data/HDP2/secure_mapping_test.js
* ambari-web/app/mixins/wizard/addSecurityConfigs.js
* ambari-web/app/controllers/main/admin/security/add/step3.js
* ambari-web/app/data/HDP2/secure_configs.js


> Add Knox kerberos setup to the existing Ambari security capabilities
> --------------------------------------------------------------------
>
>                 Key: AMBARI-7799
>                 URL: https://issues.apache.org/jira/browse/AMBARI-7799
>             Project: Ambari
>          Issue Type: Task
>          Components: stacks
>    Affects Versions: 1.7.0
>            Reporter: Sumit Gupta
>            Assignee: Jaimin D Jetly
>             Fix For: 1.7.0
>
>         Attachments: AMBARI-7799.patch.2, AMBARI-7799.patch.3, AMBARI-7799_branch-1.7.0.patch.2,
AMBARI-7799_branch-1.7.0.patch.3
>
>
> Documentation for setting up Knox to use kerberos can be found here:
> http://knox.apache.org/books/knox-0-5-0/knox-0-5-0.html#Secure+Clusters
> To summarize some of the things that need to be done besides the keytab creation:
> 1. the krb5 conf files need to be created and templated to work with the cluster setup.
> 2. gateway-site.xml needs to be modified to enable security and point to the krb5 conf
files
> 3. Other services that Knox is configured to work with may also need some configuration
changes. Specifically, core-site.xml, webhcat-site.xml and oozie-site.xml all need to be modified
to setup Knox as a trusted proxy



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)

Mime
View raw message