You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@ambari.apache.org by "Gautam Borad (JIRA)" <ji...@apache.org> on 2015/08/17 10:44:45 UTC

[jira] [Created] (AMBARI-12782) Handle file permissions for jceks file in umask 027

Gautam Borad created AMBARI-12782:
-------------------------------------

             Summary: Handle file permissions for jceks file in umask 027
                 Key: AMBARI-12782
                 URL: https://issues.apache.org/jira/browse/AMBARI-12782
             Project: Ambari
          Issue Type: Bug
    Affects Versions: 2.1.1
            Reporter: Gautam Borad
            Assignee: Gautam Borad
             Fix For: 2.1.2


# Handle : cd_access='a' for /etc/ranger/ (when jceks files are created)
** Audit to DB fails in a case if Ranger is not installed on same host as that of component host.
** For example Ranger is running on Host1 and Hiveserver2 is running on Host2. Then as /etc/ranger/<repository_name> gets created and has owner as hive user. However, due to umask setting /etc/ranger gets 750 permission with root:root as owner:group.
** Due to this when hive user tries to read the jceks file to generate audits to DB - it gets permission denied error.
# rectifying ranger_audit_db passwd to be used while creating jceks for Ranger Audit DB



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)