Cloudera CDH 5.1版本的Hive與LDAP-2.4.44整合
阿新 • • 發佈:2018-12-17
1.安裝LDAP-2.4.44
[[email protected] openldap]# vim /etc/openldap/slapd.d/cn=config/olcDatabase\=\{2\}hdb.ldif
olcRootPW: {SSHA}hWP0W7XKBLTSfDgrG0FxZ5DaEr5lkZov
olcRootDN: cn=Manager,dc=ymm56,dc=com
olcSuffix: dc=ymm56,dc=com
變化2:
[[email protected] openldap]# vim /etc/openldap/slapd.d/cn=config/olcDatabase\=\{1\}monitor.ldif olcAccess: {0}to * by dn.base="gidNumber=0+uidNumber=0,cn=peercred,cn=extern al,cn=auth" read by dn.base="cn=Manager,dc=ymm56,dc=com" read by * none
變化3:
[[email protected] openldap]# vim /etc/phpldapadmin/config.php $servers->newServer('ldap_pla'); $servers->setValue('server','name','LDAP Server'); $servers->setValue('server','host','127.0.0.1'); $servers->setValue('server','port',389); $servers->setValue('server','base',array('dc=ymm56,dc=com')); $servers->setValue('login','auth_type','cookie'); $servers->setValue('login','bind_id','cn=Manager,dc=ymm56,dc=com'); $servers->setValue('login','bind_pass','ldap123');
變化4:
[[email protected] openldap]# cat cdh.ldif
dn: dc=ymm56,dc=com
o: ldap
objectclass: dcobject
objectclass: organization
ldapadd -f base.ldif -x -D cn=Manager,dc=jf,dc=local -W
Enter LDAP Password: ldap123
最終登入
2.增加組織
[[email protected] openldap]# vi cdh-ou.ldif dn: ou=people,dc=ymm56,dc=com ou: people objectClass: organizationalUnit ldapadd -f cdh-ou.ldif -x -D cn=Manager,dc=ymm56,dc=com -W Enter LDAP Password: ldap123
可以看到頁面
3.新增使用者
[root@cdh-server1 openldap]# vi cdh-user.ldif
dn: uid=data,ou=people,dc=ymm56,dc=com
cn: data
sn: Black
telephoneNumber: 15057179959
objectClass: inetOrgPerson
[root@cdh-server1 openldap]# ldapadd -f cdh-user.ldif -x -D cn=Manager,dc=ymm56,dc=com -W
Enter LDAP Password: ldap123
# 為使用者生成密碼
[root@cdh-server1 openldap]# ldappasswd -x -D 'cn=Manager,dc=ymm56,dc=com' -W 'uid=data,ou=people,dc=ymm56,dc=com' -S
輸入密碼: lcc@123
重輸入密碼:lcc@123
輸入ldap管理員密碼:ldap123
4.CDH配置LDAP
4.1 配置
- 進入cdh管理介面,進入hive的配置項
- 點選安全性
- 勾選 “Enable LDAP Authentication”