You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@hive.apache.org by "Chaoyu Tang (JIRA)" <ji...@apache.org> on 2016/02/06 03:57:39 UTC

[jira] [Updated] (HIVE-12007) Hive LDAP Authenticator should allow just Domain without baseDN (for AD)

     [ https://issues.apache.org/jira/browse/HIVE-12007?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Chaoyu Tang updated HIVE-12007:
-------------------------------
    Fix Version/s: 2.0.0
                   1.3.0

> Hive LDAP Authenticator should allow just Domain without baseDN (for AD)
> ------------------------------------------------------------------------
>
>                 Key: HIVE-12007
>                 URL: https://issues.apache.org/jira/browse/HIVE-12007
>             Project: Hive
>          Issue Type: Bug
>          Components: HiveServer2
>    Affects Versions: 1.1.0
>            Reporter: Naveen Gangam
>            Assignee: Naveen Gangam
>             Fix For: 1.3.0, 2.0.0
>
>         Attachments: HIVE-12007.patch, HIVE-12007.patch
>
>
> When the baseDN is not configured but only the Domain has been set in hive-site.xml, LDAP Atn provider cannot locate the user in the directory. Authentication fails in such cases. This is a change from the prior implementation where the auth request succeeds based on being able to bind to the directory. This has been called out in the design doc in HIVE-7193. 
> But we should allow this for now for backward compatibility.



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)