ambari-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Tuong Truong (JIRA)" <j...@apache.org>
Subject [jira] [Commented] (AMBARI-12263) Support PAM as authentication mechanism for accessing Ambari GUI
Date Tue, 17 Nov 2015 02:01:11 GMT

    [ https://issues.apache.org/jira/browse/AMBARI-12263?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15007823#comment-15007823
] 

Tuong Truong commented on AMBARI-12263:
---------------------------------------

[~swagle], [~u39kun],    can you comment on the more integrated LDAP/AD support for Ambari
user management? I recalled Yusaku mentioned at the HackFest what there is a plan to synch
group with LDAP then grant permission to group.  When users log in,  use LDAP/AD to get the
user's group, and enable privileges base on the group.

I am not seeing any other JIRA for that work.   This JIRA is sort of related to the more integrated
LDAP feature.

> Support PAM as authentication mechanism for accessing Ambari GUI
> ----------------------------------------------------------------
>
>                 Key: AMBARI-12263
>                 URL: https://issues.apache.org/jira/browse/AMBARI-12263
>             Project: Ambari
>          Issue Type: Wish
>          Components: ambari-web
>    Affects Versions: 1.7.0, 2.0.0, 2.0.1
>            Reporter: Eric Yang
>              Labels: security
>
> Ambari GUI is using default "admin" user which is not a real user in operating system.
 Some company has strict password policy which can not be enforced to Ambari.  It would be
good to implement a Shiro PAM connector to authenticate user by Linux user credential.



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)

Mime
View raw message