Submit Search
Upload
TriHUG October: Apache Ranger
•
4 likes
•
1,388 views
T
trihug
Follow
Biren Saini talked to us about Apache Ranger on 10/27/15
Read less
Read more
Technology
Report
Share
Report
Share
1 of 28
Download now
Download to read offline
Recommended
Hadoop security
Hadoop security
Shivaji Dutta
Security and Data Governance using Apache Ranger and Apache Atlas
Security and Data Governance using Apache Ranger and Apache Atlas
DataWorks Summit/Hadoop Summit
What's New in Apache Hive
What's New in Apache Hive
DataWorks Summit
Hadoop Security Architecture
Hadoop Security Architecture
Owen O'Malley
Hadoop Security Today & Tomorrow with Apache Knox
Hadoop Security Today & Tomorrow with Apache Knox
Vinay Shukla
Securing Hadoop with Apache Ranger
Securing Hadoop with Apache Ranger
DataWorks Summit
What is new in Apache Hive 3.0?
What is new in Apache Hive 3.0?
DataWorks Summit
Apache Ranger
Apache Ranger
Rommel Garcia
Recommended
Hadoop security
Hadoop security
Shivaji Dutta
Security and Data Governance using Apache Ranger and Apache Atlas
Security and Data Governance using Apache Ranger and Apache Atlas
DataWorks Summit/Hadoop Summit
What's New in Apache Hive
What's New in Apache Hive
DataWorks Summit
Hadoop Security Architecture
Hadoop Security Architecture
Owen O'Malley
Hadoop Security Today & Tomorrow with Apache Knox
Hadoop Security Today & Tomorrow with Apache Knox
Vinay Shukla
Securing Hadoop with Apache Ranger
Securing Hadoop with Apache Ranger
DataWorks Summit
What is new in Apache Hive 3.0?
What is new in Apache Hive 3.0?
DataWorks Summit
Apache Ranger
Apache Ranger
Rommel Garcia
Hadoop REST API Security with Apache Knox Gateway
Hadoop REST API Security with Apache Knox Gateway
DataWorks Summit
Hadoop Security Today and Tomorrow
Hadoop Security Today and Tomorrow
DataWorks Summit
Apache Hadoop Security - Ranger
Apache Hadoop Security - Ranger
Isheeta Sanghi
Extending Apache Ranger Authorization Beyond Hadoop: Review of Apache Ranger ...
Extending Apache Ranger Authorization Beyond Hadoop: Review of Apache Ranger ...
DataWorks Summit
Apache NiFi Crash Course Intro
Apache NiFi Crash Course Intro
DataWorks Summit/Hadoop Summit
NiFi Developer Guide
NiFi Developer Guide
Deon Huang
Apache Atlas: Tracking dataset lineage across Hadoop components
Apache Atlas: Tracking dataset lineage across Hadoop components
DataWorks Summit/Hadoop Summit
Running Apache NiFi with Apache Spark : Integration Options
Running Apache NiFi with Apache Spark : Integration Options
Timothy Spann
Apache Ambari: Past, Present, Future
Apache Ambari: Past, Present, Future
Hortonworks
Introduction to Apache NiFi dws19 DWS - DC 2019
Introduction to Apache NiFi dws19 DWS - DC 2019
Timothy Spann
Apache Flink Adoption at Shopify
Apache Flink Adoption at Shopify
Yaroslav Tkachenko
SQOOP PPT
SQOOP PPT
Dushhyant Kumar
HBaseCon 2015: HBase Performance Tuning @ Salesforce
HBaseCon 2015: HBase Performance Tuning @ Salesforce
HBaseCon
Apache Ranger
Apache Ranger
Mike Frampton
Introduction to Apache NiFi 1.11.4
Introduction to Apache NiFi 1.11.4
Timothy Spann
Hadoop project design and a usecase
Hadoop project design and a usecase
sudhakara st
Apache Atlas: Governance for your Data
Apache Atlas: Governance for your Data
DataWorks Summit/Hadoop Summit
Hue architecture in the Hadoop ecosystem and SQL Editor
Hue architecture in the Hadoop ecosystem and SQL Editor
Romain Rigaux
Introduction to Apache ZooKeeper
Introduction to Apache ZooKeeper
Saurav Haloi
Inside MongoDB: the Internals of an Open-Source Database
Inside MongoDB: the Internals of an Open-Source Database
Mike Dirolf
Ranger admin dev overview
Ranger admin dev overview
Tushar Dudhatra
Discover HDP 2.2: Comprehensive Hadoop Security with Apache Ranger and Apache...
Discover HDP 2.2: Comprehensive Hadoop Security with Apache Ranger and Apache...
Hortonworks
More Related Content
What's hot
Hadoop REST API Security with Apache Knox Gateway
Hadoop REST API Security with Apache Knox Gateway
DataWorks Summit
Hadoop Security Today and Tomorrow
Hadoop Security Today and Tomorrow
DataWorks Summit
Apache Hadoop Security - Ranger
Apache Hadoop Security - Ranger
Isheeta Sanghi
Extending Apache Ranger Authorization Beyond Hadoop: Review of Apache Ranger ...
Extending Apache Ranger Authorization Beyond Hadoop: Review of Apache Ranger ...
DataWorks Summit
Apache NiFi Crash Course Intro
Apache NiFi Crash Course Intro
DataWorks Summit/Hadoop Summit
NiFi Developer Guide
NiFi Developer Guide
Deon Huang
Apache Atlas: Tracking dataset lineage across Hadoop components
Apache Atlas: Tracking dataset lineage across Hadoop components
DataWorks Summit/Hadoop Summit
Running Apache NiFi with Apache Spark : Integration Options
Running Apache NiFi with Apache Spark : Integration Options
Timothy Spann
Apache Ambari: Past, Present, Future
Apache Ambari: Past, Present, Future
Hortonworks
Introduction to Apache NiFi dws19 DWS - DC 2019
Introduction to Apache NiFi dws19 DWS - DC 2019
Timothy Spann
Apache Flink Adoption at Shopify
Apache Flink Adoption at Shopify
Yaroslav Tkachenko
SQOOP PPT
SQOOP PPT
Dushhyant Kumar
HBaseCon 2015: HBase Performance Tuning @ Salesforce
HBaseCon 2015: HBase Performance Tuning @ Salesforce
HBaseCon
Apache Ranger
Apache Ranger
Mike Frampton
Introduction to Apache NiFi 1.11.4
Introduction to Apache NiFi 1.11.4
Timothy Spann
Hadoop project design and a usecase
Hadoop project design and a usecase
sudhakara st
Apache Atlas: Governance for your Data
Apache Atlas: Governance for your Data
DataWorks Summit/Hadoop Summit
Hue architecture in the Hadoop ecosystem and SQL Editor
Hue architecture in the Hadoop ecosystem and SQL Editor
Romain Rigaux
Introduction to Apache ZooKeeper
Introduction to Apache ZooKeeper
Saurav Haloi
Inside MongoDB: the Internals of an Open-Source Database
Inside MongoDB: the Internals of an Open-Source Database
Mike Dirolf
What's hot
(20)
Hadoop REST API Security with Apache Knox Gateway
Hadoop REST API Security with Apache Knox Gateway
Hadoop Security Today and Tomorrow
Hadoop Security Today and Tomorrow
Apache Hadoop Security - Ranger
Apache Hadoop Security - Ranger
Extending Apache Ranger Authorization Beyond Hadoop: Review of Apache Ranger ...
Extending Apache Ranger Authorization Beyond Hadoop: Review of Apache Ranger ...
Apache NiFi Crash Course Intro
Apache NiFi Crash Course Intro
NiFi Developer Guide
NiFi Developer Guide
Apache Atlas: Tracking dataset lineage across Hadoop components
Apache Atlas: Tracking dataset lineage across Hadoop components
Running Apache NiFi with Apache Spark : Integration Options
Running Apache NiFi with Apache Spark : Integration Options
Apache Ambari: Past, Present, Future
Apache Ambari: Past, Present, Future
Introduction to Apache NiFi dws19 DWS - DC 2019
Introduction to Apache NiFi dws19 DWS - DC 2019
Apache Flink Adoption at Shopify
Apache Flink Adoption at Shopify
SQOOP PPT
SQOOP PPT
HBaseCon 2015: HBase Performance Tuning @ Salesforce
HBaseCon 2015: HBase Performance Tuning @ Salesforce
Apache Ranger
Apache Ranger
Introduction to Apache NiFi 1.11.4
Introduction to Apache NiFi 1.11.4
Hadoop project design and a usecase
Hadoop project design and a usecase
Apache Atlas: Governance for your Data
Apache Atlas: Governance for your Data
Hue architecture in the Hadoop ecosystem and SQL Editor
Hue architecture in the Hadoop ecosystem and SQL Editor
Introduction to Apache ZooKeeper
Introduction to Apache ZooKeeper
Inside MongoDB: the Internals of an Open-Source Database
Inside MongoDB: the Internals of an Open-Source Database
Viewers also liked
Ranger admin dev overview
Ranger admin dev overview
Tushar Dudhatra
Discover HDP 2.2: Comprehensive Hadoop Security with Apache Ranger and Apache...
Discover HDP 2.2: Comprehensive Hadoop Security with Apache Ranger and Apache...
Hortonworks
Hdp security overview
Hdp security overview
Hortonworks
Curb your insecurity with HDP - Tips for a Secure Cluster
Curb your insecurity with HDP - Tips for a Secure Cluster
ahortonworks
Security needs in Hadoop’s Current and Future – How Apache Ranger can help?
Security needs in Hadoop’s Current and Future – How Apache Ranger can help?
DataWorks Summit
Simplify and Secure your Hadoop Environment with Hortonworks and Centrify
Simplify and Secure your Hadoop Environment with Hortonworks and Centrify
Hortonworks
Hadoop bootcamp getting started
Hadoop bootcamp getting started
JWORKS powered by Ordina
Securing Hadoop's REST APIs with Apache Knox Gateway Hadoop Summit June 6th, ...
Securing Hadoop's REST APIs with Apache Knox Gateway Hadoop Summit June 6th, ...
Kevin Minder
Discover Enterprise Security Features in Hortonworks Data Platform 2.1: Apach...
Discover Enterprise Security Features in Hortonworks Data Platform 2.1: Apach...
Hortonworks
Apache Kafka Security
Apache Kafka Security
DataWorks Summit/Hadoop Summit
Deep learning with Hortonworks and Apache Spark - Hortonworks technical workshop
Deep learning with Hortonworks and Apache Spark - Hortonworks technical workshop
Hortonworks
Protecting Enterprise Data in Apache Hadoop
Protecting Enterprise Data in Apache Hadoop
Hortonworks
Hadoop and Data Virtualization - A Case Study by VHA
Hadoop and Data Virtualization - A Case Study by VHA
Hortonworks
The Emerging Data Lake IT Strategy
The Emerging Data Lake IT Strategy
Thomas Kelly, PMP
Hortonworks Data in Motion Webinar Series Part 7 Apache Kafka Nifi Better Tog...
Hortonworks Data in Motion Webinar Series Part 7 Apache Kafka Nifi Better Tog...
Hortonworks
Enabling the Real Time Analytical Enterprise
Enabling the Real Time Analytical Enterprise
Hortonworks
Viewers also liked
(16)
Ranger admin dev overview
Ranger admin dev overview
Discover HDP 2.2: Comprehensive Hadoop Security with Apache Ranger and Apache...
Discover HDP 2.2: Comprehensive Hadoop Security with Apache Ranger and Apache...
Hdp security overview
Hdp security overview
Curb your insecurity with HDP - Tips for a Secure Cluster
Curb your insecurity with HDP - Tips for a Secure Cluster
Security needs in Hadoop’s Current and Future – How Apache Ranger can help?
Security needs in Hadoop’s Current and Future – How Apache Ranger can help?
Simplify and Secure your Hadoop Environment with Hortonworks and Centrify
Simplify and Secure your Hadoop Environment with Hortonworks and Centrify
Hadoop bootcamp getting started
Hadoop bootcamp getting started
Securing Hadoop's REST APIs with Apache Knox Gateway Hadoop Summit June 6th, ...
Securing Hadoop's REST APIs with Apache Knox Gateway Hadoop Summit June 6th, ...
Discover Enterprise Security Features in Hortonworks Data Platform 2.1: Apach...
Discover Enterprise Security Features in Hortonworks Data Platform 2.1: Apach...
Apache Kafka Security
Apache Kafka Security
Deep learning with Hortonworks and Apache Spark - Hortonworks technical workshop
Deep learning with Hortonworks and Apache Spark - Hortonworks technical workshop
Protecting Enterprise Data in Apache Hadoop
Protecting Enterprise Data in Apache Hadoop
Hadoop and Data Virtualization - A Case Study by VHA
Hadoop and Data Virtualization - A Case Study by VHA
The Emerging Data Lake IT Strategy
The Emerging Data Lake IT Strategy
Hortonworks Data in Motion Webinar Series Part 7 Apache Kafka Nifi Better Tog...
Hortonworks Data in Motion Webinar Series Part 7 Apache Kafka Nifi Better Tog...
Enabling the Real Time Analytical Enterprise
Enabling the Real Time Analytical Enterprise
Similar to TriHUG October: Apache Ranger
2014 sept 4_hadoop_security
2014 sept 4_hadoop_security
Adam Muise
August 2014 HUG : Comprehensive Security for Hadoop
August 2014 HUG : Comprehensive Security for Hadoop
Yahoo Developer Network
Hadoop & Security - Past, Present, Future
Hadoop & Security - Past, Present, Future
Uwe Printz
Improvements in Hadoop Security
Improvements in Hadoop Security
DataWorks Summit
Discover HDP 2.1: Apache Falcon for Data Governance in Hadoop
Discover HDP 2.1: Apache Falcon for Data Governance in Hadoop
Hortonworks
大数据数据治理及数据安全
大数据数据治理及数据安全
Jianwei Li
Fortifying Multi-Cluster Hybrid Cloud Data Lakes using Apache Knox
Fortifying Multi-Cluster Hybrid Cloud Data Lakes using Apache Knox
DataWorks Summit
Discover HDP 2.1: Apache Hadoop 2.4.0, YARN & HDFS
Discover HDP 2.1: Apache Hadoop 2.4.0, YARN & HDFS
Hortonworks
Apache Argus - How do I secure my entire Hadoop cluster? Olivier Renault @ Ho...
Apache Argus - How do I secure my entire Hadoop cluster? Olivier Renault @ Ho...
huguk
Saving the elephant—now, not later
Saving the elephant—now, not later
DataWorks Summit
Improvements in Hadoop Security
Improvements in Hadoop Security
Chris Nauroth
Hadoop and Data Access Security
Hadoop and Data Access Security
Cloudera, Inc.
Hadoop security @ Philly Hadoop Meetup May 2015
Hadoop security @ Philly Hadoop Meetup May 2015
Shravan (Sean) Pabba
Treat your enterprise data lake indigestion: Enterprise ready security and go...
Treat your enterprise data lake indigestion: Enterprise ready security and go...
DataWorks Summit
Securing the Hadoop Ecosystem
Securing the Hadoop Ecosystem
DataWorks Summit
August 2014 HUG : Hive 13 Security
August 2014 HUG : Hive 13 Security
Yahoo Developer Network
Bridle your Flying Islands and Castles in the Sky: Built-in Governance and Se...
Bridle your Flying Islands and Castles in the Sky: Built-in Governance and Se...
DataWorks Summit
Comprehensive Security for the Enterprise II: Guarding the Perimeter and Cont...
Comprehensive Security for the Enterprise II: Guarding the Perimeter and Cont...
Cloudera, Inc.
Keeping your Enterprise’s Big Data Secure by Owen O’Malley at Big Data Spain ...
Keeping your Enterprise’s Big Data Secure by Owen O’Malley at Big Data Spain ...
Big Data Spain
Big Data Warehousing Meetup: Securing the Hadoop Ecosystem by Cloudera
Big Data Warehousing Meetup: Securing the Hadoop Ecosystem by Cloudera
Caserta
Similar to TriHUG October: Apache Ranger
(20)
2014 sept 4_hadoop_security
2014 sept 4_hadoop_security
August 2014 HUG : Comprehensive Security for Hadoop
August 2014 HUG : Comprehensive Security for Hadoop
Hadoop & Security - Past, Present, Future
Hadoop & Security - Past, Present, Future
Improvements in Hadoop Security
Improvements in Hadoop Security
Discover HDP 2.1: Apache Falcon for Data Governance in Hadoop
Discover HDP 2.1: Apache Falcon for Data Governance in Hadoop
大数据数据治理及数据安全
大数据数据治理及数据安全
Fortifying Multi-Cluster Hybrid Cloud Data Lakes using Apache Knox
Fortifying Multi-Cluster Hybrid Cloud Data Lakes using Apache Knox
Discover HDP 2.1: Apache Hadoop 2.4.0, YARN & HDFS
Discover HDP 2.1: Apache Hadoop 2.4.0, YARN & HDFS
Apache Argus - How do I secure my entire Hadoop cluster? Olivier Renault @ Ho...
Apache Argus - How do I secure my entire Hadoop cluster? Olivier Renault @ Ho...
Saving the elephant—now, not later
Saving the elephant—now, not later
Improvements in Hadoop Security
Improvements in Hadoop Security
Hadoop and Data Access Security
Hadoop and Data Access Security
Hadoop security @ Philly Hadoop Meetup May 2015
Hadoop security @ Philly Hadoop Meetup May 2015
Treat your enterprise data lake indigestion: Enterprise ready security and go...
Treat your enterprise data lake indigestion: Enterprise ready security and go...
Securing the Hadoop Ecosystem
Securing the Hadoop Ecosystem
August 2014 HUG : Hive 13 Security
August 2014 HUG : Hive 13 Security
Bridle your Flying Islands and Castles in the Sky: Built-in Governance and Se...
Bridle your Flying Islands and Castles in the Sky: Built-in Governance and Se...
Comprehensive Security for the Enterprise II: Guarding the Perimeter and Cont...
Comprehensive Security for the Enterprise II: Guarding the Perimeter and Cont...
Keeping your Enterprise’s Big Data Secure by Owen O’Malley at Big Data Spain ...
Keeping your Enterprise’s Big Data Secure by Owen O’Malley at Big Data Spain ...
Big Data Warehousing Meetup: Securing the Hadoop Ecosystem by Cloudera
Big Data Warehousing Meetup: Securing the Hadoop Ecosystem by Cloudera
More from trihug
TriHUG Feb: Hive on spark
TriHUG Feb: Hive on spark
trihug
TriHUG 3/14: HBase in Production
TriHUG 3/14: HBase in Production
trihug
TriHUG 2/14: Apache Sentry
TriHUG 2/14: Apache Sentry
trihug
TriHUG talk on Spark and Shark
TriHUG talk on Spark and Shark
trihug
Impala presentation
Impala presentation
trihug
Practical pig
Practical pig
trihug
Financial services trihug
Financial services trihug
trihug
TriHUG January 2012 Talk by Chris Shain
TriHUG January 2012 Talk by Chris Shain
trihug
TriHUG November HCatalog Talk by Alan Gates
TriHUG November HCatalog Talk by Alan Gates
trihug
TriHUG November Pig Talk by Alan Gates
TriHUG November Pig Talk by Alan Gates
trihug
MapR, Implications for Integration
MapR, Implications for Integration
trihug
More from trihug
(11)
TriHUG Feb: Hive on spark
TriHUG Feb: Hive on spark
TriHUG 3/14: HBase in Production
TriHUG 3/14: HBase in Production
TriHUG 2/14: Apache Sentry
TriHUG 2/14: Apache Sentry
TriHUG talk on Spark and Shark
TriHUG talk on Spark and Shark
Impala presentation
Impala presentation
Practical pig
Practical pig
Financial services trihug
Financial services trihug
TriHUG January 2012 Talk by Chris Shain
TriHUG January 2012 Talk by Chris Shain
TriHUG November HCatalog Talk by Alan Gates
TriHUG November HCatalog Talk by Alan Gates
TriHUG November Pig Talk by Alan Gates
TriHUG November Pig Talk by Alan Gates
MapR, Implications for Integration
MapR, Implications for Integration
Recently uploaded
Rise of the Machines: Known As Drones...
Rise of the Machines: Known As Drones...
Rick Flair
How AI, OpenAI, and ChatGPT impact business and software.
How AI, OpenAI, and ChatGPT impact business and software.
Curtis Poe
A Framework for Development in the AI Age
A Framework for Development in the AI Age
Cprime
H2O.ai CEO/Founder: Sri Ambati Keynote at Wells Fargo Day
H2O.ai CEO/Founder: Sri Ambati Keynote at Wells Fargo Day
Sri Ambati
So einfach geht modernes Roaming fuer Notes und Nomad.pdf
So einfach geht modernes Roaming fuer Notes und Nomad.pdf
panagenda
The Ultimate Guide to Choosing WordPress Pros and Cons
The Ultimate Guide to Choosing WordPress Pros and Cons
Pixlogix Infotech
Time Series Foundation Models - current state and future directions
Time Series Foundation Models - current state and future directions
Nathaniel Shimoni
Visualising and forecasting stocks using Dash
Visualising and forecasting stocks using Dash
narutouzumaki53779
Digital Identity is Under Attack: FIDO Paris Seminar.pptx
Digital Identity is Under Attack: FIDO Paris Seminar.pptx
LoriGlavin3
DSPy a system for AI to Write Prompts and Do Fine Tuning
DSPy a system for AI to Write Prompts and Do Fine Tuning
Lars Bell
A Journey Into the Emotions of Software Developers
A Journey Into the Emotions of Software Developers
Nicole Novielli
Fact vs. Fiction: Autodetecting Hallucinations in LLMs
Fact vs. Fiction: Autodetecting Hallucinations in LLMs
Zilliz
[Webinar] SpiraTest - Setting New Standards in Quality Assurance
[Webinar] SpiraTest - Setting New Standards in Quality Assurance
Inflectra
Merck Moving Beyond Passwords: FIDO Paris Seminar.pptx
Merck Moving Beyond Passwords: FIDO Paris Seminar.pptx
LoriGlavin3
How to write a Business Continuity Plan
How to write a Business Continuity Plan
Databarracks
Exploring ChatGPT Prompt Hacks To Maximally Optimise Your Queries
Exploring ChatGPT Prompt Hacks To Maximally Optimise Your Queries
Sanjay Willie
Scale your database traffic with Read & Write split using MySQL Router
Scale your database traffic with Read & Write split using MySQL Router
Mydbops
Decarbonising Buildings: Making a net-zero built environment a reality
Decarbonising Buildings: Making a net-zero built environment a reality
IES VE
Long journey of Ruby standard library at RubyConf AU 2024
Long journey of Ruby standard library at RubyConf AU 2024
Hiroshi SHIBATA
Ensuring Technical Readiness For Copilot in Microsoft 365
Ensuring Technical Readiness For Copilot in Microsoft 365
2toLead Limited
Recently uploaded
(20)
Rise of the Machines: Known As Drones...
Rise of the Machines: Known As Drones...
How AI, OpenAI, and ChatGPT impact business and software.
How AI, OpenAI, and ChatGPT impact business and software.
A Framework for Development in the AI Age
A Framework for Development in the AI Age
H2O.ai CEO/Founder: Sri Ambati Keynote at Wells Fargo Day
H2O.ai CEO/Founder: Sri Ambati Keynote at Wells Fargo Day
So einfach geht modernes Roaming fuer Notes und Nomad.pdf
So einfach geht modernes Roaming fuer Notes und Nomad.pdf
The Ultimate Guide to Choosing WordPress Pros and Cons
The Ultimate Guide to Choosing WordPress Pros and Cons
Time Series Foundation Models - current state and future directions
Time Series Foundation Models - current state and future directions
Visualising and forecasting stocks using Dash
Visualising and forecasting stocks using Dash
Digital Identity is Under Attack: FIDO Paris Seminar.pptx
Digital Identity is Under Attack: FIDO Paris Seminar.pptx
DSPy a system for AI to Write Prompts and Do Fine Tuning
DSPy a system for AI to Write Prompts and Do Fine Tuning
A Journey Into the Emotions of Software Developers
A Journey Into the Emotions of Software Developers
Fact vs. Fiction: Autodetecting Hallucinations in LLMs
Fact vs. Fiction: Autodetecting Hallucinations in LLMs
[Webinar] SpiraTest - Setting New Standards in Quality Assurance
[Webinar] SpiraTest - Setting New Standards in Quality Assurance
Merck Moving Beyond Passwords: FIDO Paris Seminar.pptx
Merck Moving Beyond Passwords: FIDO Paris Seminar.pptx
How to write a Business Continuity Plan
How to write a Business Continuity Plan
Exploring ChatGPT Prompt Hacks To Maximally Optimise Your Queries
Exploring ChatGPT Prompt Hacks To Maximally Optimise Your Queries
Scale your database traffic with Read & Write split using MySQL Router
Scale your database traffic with Read & Write split using MySQL Router
Decarbonising Buildings: Making a net-zero built environment a reality
Decarbonising Buildings: Making a net-zero built environment a reality
Long journey of Ruby standard library at RubyConf AU 2024
Long journey of Ruby standard library at RubyConf AU 2024
Ensuring Technical Readiness For Copilot in Microsoft 365
Ensuring Technical Readiness For Copilot in Microsoft 365
TriHUG October: Apache Ranger
1.
Hadoop Data Security with Apache
Ranger Biren Saini © Hortonworks Inc. 2011 – 2015. All Rights Reserved
2.
Page 2 ©
Hortonworks Inc. 2015 About me • Biren Saini • Senior Solutions Engineer • Governance SME Lead • Overall 15 years of technology experience @ Hortonworks}
3.
Page 3 ©
Hortonworks Inc. 2015 Agenda • Hadoop Security Overview • Apache Ranger – Introduction – Architecture – Sample Flow – Best Practices – Ranger Stacks – Demo
4.
Page 4 ©
Hortonworks Inc. 2015 Overview of Security in Hadoop
5.
Page 5 ©
Hortonworks Inc. 2015 5 Pillars of Security • Authentication • Authorization • Audit • Encryption • Centralized Administration
6.
Page 6 ©
Hortonworks Inc. 2015 Security Tools in Hadoop world • Kerberos (authentication) • Apache Knox (authentication) • AD/LDAP (authentication) • Apache Ranger (authorization, audit, kms) • HDFS TDE (data encryption) • Wire Encryption (data protection)
7.
Page 7 ©
Hortonworks Inc. 2015 HDFS Typical Flow – SQL Access through Beeline client HiveServer 2 A B C Beeline Client
8.
Page 8 ©
Hortonworks Inc. 2015 HDFS Typical Flow – Authenticate through Kerberos HiveServer 2 A B C KDC Login into Hive using AD password Hive gets Namenode (NN) service ticket Hive creates map reduce using NN ST Client gets service ticket for Hive Beeline Client Active Directory
9.
Page 9 ©
Hortonworks Inc. 2015 HDFS Typical Flow – Add Authorization through Apache Ranger HiveServer 2 A B C KDC Hive gets Namenode (NN) service ticket Column level access control, auditing Ranger Beeline Client File level access control Active Directory Import users/groups from LDAP Login into Hive using AD password
10.
Page 10 ©
Hortonworks Inc. 2015 HDFS Typical Flow – Firewall, Route through Knox Gateway HiveServer 2 A B C KDC Use Hive ST, submit query Hive gets Namenode (NN) service ticket Hive creates map reduce using NN ST Ranger Knox gets service ticket for Hive Knox runs as proxy user using Hive ST Original request w/user id/password Client gets query result Beeline Client Apache Knox Active Directory
11.
Page 11 ©
Hortonworks Inc. 2015 HDFS Typical Flow – Add Wire and File Encryption HiveServer 2 A B C KDC Use Hive ST, submit query Hive gets Namenode (NN) service ticket Hive creates map reduce using NN ST Ranger Knox gets service ticket for Hive Knox runs as proxy user using Hive ST Original request w/user id/password Client gets query result SSL Beeline Client SSL SASL SSL SSL Apache Knox Active Directory
12.
Page 12 ©
Hortonworks Inc. 2015 Apache Ranger
13.
Page 13 ©
Hortonworks Inc. 2015 Apache Ranger • Provides centralized policy definition for authorizing & auditing access to resources in a consistent manner. • Supported components as of v0.5 • HDFS • HBase • Hive • YARN • Knox • Storm • Solr • Kafka
14.
Page 14 ©
Hortonworks Inc. 2015 Setup Authorization Policies 14 file level access control, flexible definition Control permissions
15.
Page 15 ©
Hortonworks Inc. 2015 Monitor through Auditing
16.
Page 16 ©
Hortonworks Inc. 2015 Agent AgentAgent AgentAgent Agent Apache Ranger authZ Architecture HBase Hive YARN Knox Storm Solr Kafka Agent HDFS Agent Administration Portal (Ranger UI) REST APIs DB SOLR HDFS Policy Server LDAP/AD user/group sync Log4j KMS Audit Server User Sync Server
17.
Page 17 ©
Hortonworks Inc. 2015 Hadoop Cluster Sample Simplified Workflow - HDFS Policy Server Audit Server Administration Portal Agent Namenode Audit Store Ranger Policy Store Unauthorized user attempts to access the data User access is denied No Policy defined.
18.
Page 18 ©
Hortonworks Inc. 2015 Hadoop Cluster Sample Simplified Workflow - HDFS Policy Server Audit Server Administration Portal Admin sets policies for HDFS files/ folder1a 1b 1d Agent Namenode Audit Store Ranger Policy Store 1c
19.
Page 19 ©
Hortonworks Inc. 2015 Hadoop Cluster Sample Simplified Workflow - HDFS Policy Server Audit Server Administration Portal Admin sets policies for HDFS files/ folder1a Data scientist runs a map reduce job User Application Analysts access HDFS data through application IT users access HDFS through CLI 1b 2a 2a 2a Agent Namenode Namenode provides resource access to user/client Namenode uses Agent for Authorization2b Audit Store 2d 2c Ranger Policy Store 1d 1c
20.
Page 20 ©
Hortonworks Inc. 2015 Hadoop Cluster Sample Simplified Workflow - HDFS Policy Server Audit Server Administration Portal Admin sets policies for HDFS files/ folder1a Data scientist runs a map reduce job User Application Analysts access HDFS data through application IT users access HDFS through CLI 1b 2a 2a 2a Agent Namenode Namenode provides resource access to user/client Namenode uses Agent for Authorization2b Audit Store Admin requests the Audit report3a 3b 3c 2d 2c Ranger Policy Store 1d 1c
21.
Page 21 ©
Hortonworks Inc. 2015 Ranger UserSync Best Practice 21 • Ensure LDAPS is used to integrate with Ranger • Create OU ONLY for Hadoop users for performance • Only run usersync when necessary – How much users are being added and how often – How much users are changing roles – Too much syncing can degrade LDAP performance • Do not sync anonymously
22.
Page 22 ©
Hortonworks Inc. 2015 Ranger Audit Best Practices 22 • HDFS – Long term storage that can be used to understand user event trends and predict anomaly • RDBMS – When SQL is preferred by auditors – MySQL, Oracle, Postgres, SQL Server • Solr – Nice quick reporting metrics to understand user event trends • Log4j Appenders
23.
Page 23 ©
Hortonworks Inc. 2015 Ranger Stacks • Apache Ranger v0.5 supports stack-model to enable easier onboarding of new components, without requiring code changes in Apache Ranger. Ranger Side Changes Define Service-type Secured Components Side Changes Develop Ranger Authorization Plugin • Create a JSON file with following details : - Resources - Access types - Config to connect • Load the JSON into Ranger. • Include plugin library in the secure component. • During initialization of the service: Init RangerBasePlugIn & RangerDefaultAuditHandler class. • To authorize access to a resource: Use RangerAccessRequest.isAccessAllowed() • To support resource lookup: Implement RangerBaseService.lookupResource() & RangerBaseService.validateConfig() https://cwiki.apache.org/confluence/pages/viewpage.action?pageId=53741207
24.
Page 24 ©
Hortonworks Inc. 2015 Summary & Misc. points 24 • All functions are available as Rest API • Ranger integrates with AD/LDAP for ranger login as well as user sync. • Support for High Availability (HA) • Support for Transparent Data Encryption with KMS implementation • Tighter integration with Apache Ambari • Stack based implementation of Plugins • Ranger also has the KMS for HDFS TDE. • Some features in development are – Spark support – Time based authorization – Geo Location based authorization
25.
Page 25 ©
Hortonworks Inc. 2015 Demo - HDFS Admin SamTom /demo/data/trihug /demo/data/trihugRanger UI WRITE Access denied READ Access denied 1 2 SamTom /demo/data/trihug WRITE Access allowed READ Access allowed 3 Grants access READ for Sam WRITE for Tom Ranger Plugin gets the update WRITE Access denied hdfs:hdfs rwx --- --- Elevated Privileges Restricted Privileges Directory already exists
26.
Page 26 ©
Hortonworks Inc. 2015 Demo - Hive Admin SamTom tickers eod Ranger UI WRITE Access denied READ Access denied 1 2 SamTom WRITE Access allowed READ Access to SOME COLUMNS allowed 3 Grants access READ for Sam ALL for Tom Ranger Plugin gets the update WRITE Access denied hive tables tickers eod hive tables tickers eod hive tables SOME COLUMNS READ Access to ALL COLUMNS denied Created by “hive” user in trihug schema Elevated Privileges Restricted Privileges GRANT Access allowed DB already exists
27.
Page 27 ©
Hortonworks Inc. 2015 Demo time..
28.
Page 28 ©
Hortonworks Inc. 2015 Thank you. Questions?
Download now