https://community.hortonworks.com/articles/76938/zeppelin-ldap-authentication-with-openldap.html
前のHDP 2.5.3のKnox Demo Ldapを使ってみるを参考に、Advanced zeppelin-envからshiro_ini_contentを下記に変更 ([users]は全てコメントアウトしてある):
[main]
ldapRealm = org.apache.shiro.realm.ldap.JndiLdapRealm
ldapRealm.userDnTemplate = uid={0},ou=people,dc=hadoop,dc=apache,dc=org
ldapRealm.contextFactory.url = ldap://sandbox.hortonworks.com:33389
ldapRealm.contextFactory.authenticationMechanism = SIMPLE
sessionManager = org.apache.shiro.web.session.mgt.DefaultWebSessionManager
securityManager.sessionManager = $sessionManager
securityManager.sessionManager.globalSessionTimeout = 86400000
shiro.loginUrl = /api/login
[urls]
/** = authc
あとは再起動すればOK。
HDP 2.5.3, 2.6.0だと設定が変わった模様
http://docs.hortonworks.com/HDPDocuments/HDP2/HDP-2.6.0/bk_zeppelin-component-guide/content/config-secure-prod.html
https://zeppelin.apache.org/docs/0.6.0/security/shiroauthentication.html
前のHDP 2.5.3のKnox Demo Ldapを使ってみるを参考に、Advanced zeppelin-envからshiro_ini_contentを下記に変更 ([users]は全てコメントアウトしてある):
[main]
ldapRealm = org.apache.shiro.realm.ldap.JndiLdapRealm
ldapRealm.userDnTemplate = uid={0},ou=people,dc=hadoop,dc=apache,dc=org
ldapRealm.contextFactory.url = ldap://sandbox.hortonworks.com:33389
ldapRealm.contextFactory.authenticationMechanism = SIMPLE
sessionManager = org.apache.shiro.web.session.mgt.DefaultWebSessionManager
securityManager.sessionManager = $sessionManager
securityManager.sessionManager.globalSessionTimeout = 86400000
shiro.loginUrl = /api/login
[urls]
/** = authc
あとは再起動すればOK。
HDP 2.5.3, 2.6.0だと設定が変わった模様
http://docs.hortonworks.com/HDPDocuments/HDP2/HDP-2.6.0/bk_zeppelin-component-guide/content/config-secure-prod.html
https://zeppelin.apache.org/docs/0.6.0/security/shiroauthentication.html
0 件のコメント:
コメントを投稿