You are viewing a plain text version of this content. The canonical link for it is here.
Posted to issues@hive.apache.org by "Lefty Leverenz (JIRA)" <ji...@apache.org> on 2016/02/06 03:29:39 UTC
[jira] [Commented] (HIVE-12007) Hive LDAP Authenticator should
allow just Domain without baseDN (for AD)
[ https://issues.apache.org/jira/browse/HIVE-12007?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15135479#comment-15135479 ]
Lefty Leverenz commented on HIVE-12007:
---------------------------------------
[~szehon] or [~ctang.ma], this was committed to master in October for release 2.0.0 and to branch-1 today for release 1.3.0 so Fix Version/s needs to be updated. Thanks.
> Hive LDAP Authenticator should allow just Domain without baseDN (for AD)
> ------------------------------------------------------------------------
>
> Key: HIVE-12007
> URL: https://issues.apache.org/jira/browse/HIVE-12007
> Project: Hive
> Issue Type: Bug
> Components: HiveServer2
> Affects Versions: 1.1.0
> Reporter: Naveen Gangam
> Assignee: Naveen Gangam
> Attachments: HIVE-12007.patch, HIVE-12007.patch
>
>
> When the baseDN is not configured but only the Domain has been set in hive-site.xml, LDAP Atn provider cannot locate the user in the directory. Authentication fails in such cases. This is a change from the prior implementation where the auth request succeeds based on being able to bind to the directory. This has been called out in the design doc in HIVE-7193.
> But we should allow this for now for backward compatibility.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)