Procedure
This section describes the step-by-step process for integrating Ranger into HDFS.
- Enable the HDFS plug-in
- On the Cluster Management page, click Manage next to the cluster you want to operate in the Actions column.
- Click Ranger in the service list to enter the Ranger Management page.
- On the Ranger Configuration page, click the Actions drop-down menu in the upper-right corner, select Enable HDFS PLUGIN, and click OK.
- Enter the record information in the prompt box and click OK.
You can check the progress by clicking View Operation Logs in the upper-right corner of the page.
- Restart NameNode
After enabling the HDFS plug-in, you need to restart NameNode. To do so, complete the following steps:
- In the Ranger Management page, click the Ranger drop-down menu in the upper-left corner, and select HDFS.
- Click Actions in the upper-right corner of the page and select RESTART NameNode.
- You can check the progress by clicking View Operation Logs in the upper-right corner of the page.
- Add the HDFS service to Ranger UI
For more information about how to access the Ranger UI, see Introduction to Ranger.
Add the HDFS service.
- Standard cluster
To check the mode of the cluster you created, go to the Cluster Overview page. If your cluster is in standard mode, configure it as follows:
- High-security-mode cluster
To check the mode of the cluster you created, go to the Cluster Overview page. If your cluster is in high-security mode, configure it as follows:
- Standard cluster
Permission configuration
After integrating Ranger into HDFS, you can set permissions, such as granting the test user the write or execute permission for /user/foo.
In the preceding figure, click emr-hdfs to enter the policy configuration page.
Permissions are granted to the test user. They can now access the HDFS path of /user/foo.