ambari-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Gautam Borad (JIRA)" <j...@apache.org>
Subject [jira] [Updated] (AMBARI-12782) Handle file permissions for jceks file in umask 027
Date Mon, 17 Aug 2015 09:12:45 GMT

     [ https://issues.apache.org/jira/browse/AMBARI-12782?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]

Gautam Borad updated AMBARI-12782:
----------------------------------
    Attachment: AMBARI-12782.patch

> Handle file permissions for jceks file in umask 027
> ---------------------------------------------------
>
>                 Key: AMBARI-12782
>                 URL: https://issues.apache.org/jira/browse/AMBARI-12782
>             Project: Ambari
>          Issue Type: Bug
>    Affects Versions: 2.1.1
>            Reporter: Gautam Borad
>            Assignee: Gautam Borad
>             Fix For: 2.1.2
>
>         Attachments: AMBARI-12782.patch
>
>
> # Handle : cd_access='a' for /etc/ranger/ (when jceks files are created)
> ** Audit to DB fails in a case if Ranger is not installed on same host as that of component
host.
> ** For example Ranger is running on Host1 and Hiveserver2 is running on Host2. Then as
/etc/ranger/<repository_name> gets created and has owner as hive user. However, due
to umask setting /etc/ranger gets 750 permission with root:root as owner:group.
> ** Due to this when hive user tries to read the jceks file to generate audits to DB -
it gets permission denied error.
> # rectifying ranger_audit_db passwd to be used while creating jceks for Ranger Audit
DB



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)

Mime
View raw message