You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@ambari.apache.org by "Siddharth Wagle (JIRA)" <ji...@apache.org> on 2014/09/23 22:19:34 UTC
[jira] [Updated] (AMBARI-7460) Ambari needs to use password files
instead of clear password in configuration file for LDAP password
[ https://issues.apache.org/jira/browse/AMBARI-7460?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Siddharth Wagle updated AMBARI-7460:
------------------------------------
Description:
We should encourage end users to config LDAP group mapping by using password files instead of clear password for the security reason.
The password property should not be in configuration files:
hadoop.security.group.mapping.ldap.ssl.keystore.password and hadoop.security.group.mapping.ldap.bind.password
In stead, should use the password file property:
hadoop.security.group.mapping.ldap.ssl.keystore.password.file and hadoop.security.group.mapping.ldap.bind.password.file
Fix Version/s: 1.7.0
Assignee: Siddharth Wagle
> Ambari needs to use password files instead of clear password in configuration file for LDAP password
> ----------------------------------------------------------------------------------------------------
>
> Key: AMBARI-7460
> URL: https://issues.apache.org/jira/browse/AMBARI-7460
> Project: Ambari
> Issue Type: Bug
> Components: ambari-server
> Affects Versions: 1.7.0
> Reporter: Siddharth Wagle
> Assignee: Siddharth Wagle
> Fix For: 1.7.0
>
>
> We should encourage end users to config LDAP group mapping by using password files instead of clear password for the security reason.
> The password property should not be in configuration files:
> hadoop.security.group.mapping.ldap.ssl.keystore.password and hadoop.security.group.mapping.ldap.bind.password
> In stead, should use the password file property:
> hadoop.security.group.mapping.ldap.ssl.keystore.password.file and hadoop.security.group.mapping.ldap.bind.password.file
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)