Skip to content

Added ranger audit configuration example for Elastic Search #26692

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Open
wants to merge 1 commit into
base: master
Choose a base branch
from
Open

Added ranger audit configuration example for Elastic Search #26692

Changes from all commits
Commits
Show all changes
1 commit
Select commit
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
45 changes: 44 additions & 1 deletion docs/src/main/sphinx/security/ranger-access-control.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -8,7 +8,7 @@ column-masking, row-filtering and audit logging.
## Requirements

* Access to a Apache Ranger deployment with the desired authorization policies.
* Access to an audit store using Solr, HDFS, Log4J, or S3 to save audit logs.
* Access to an audit store using Solr, HDFS, Log4J, Elastic Search, or S3 to save audit logs.
* Apache Ranger 2.5.0 and greater include the required Trino service definition.
Earlier versions of Apache Ranger require an [update to the service definition
available on
Expand Down Expand Up @@ -134,6 +134,49 @@ The following table lists the configuration properties for the Ranger access con
<value></value>
<description>URL to Solr deployment where the plugin should send access audits to</description>
</property>

<property>
<name>xasecure.audit.destination.elasticsearch</name>
<value>disabled</value>
<description>Is es audit enabled? Allowed values to enable: enable, enabled, true</description>
</property>

<property>
<name>xasecure.audit.destination.elasticsearch.urls</name>
<value>host1,host2</value>
<description>Comma (,) separated list of es hosts.</description>
</property>

<property>
<name>xasecure.audit.destination.elasticsearch.index</name>
<value>ranger_audits_write</value>
<description>The index to write audits to. Default: ranger_audits</description>
</property>

<property>
<name>xasecure.audit.destination.elasticsearch.port</name>
<value>9200</value>
<description>The port for es. Default: 9200</description>
</property>

<property>
<name>xasecure.audit.destination.elasticsearch.protocol</name>
<value>http</value>
<description>The http protocol to use during communication. Default: http</description>
</property>

<property>
<name>xasecure.audit.destination.elasticsearch.user</name>
<value>write_user</value>
<description>The username to authenticate towards es.</description>
</property>

<property>
<name>xasecure.audit.destination.elasticsearch.password</name>
<value>changeme</value>
<description>The password to authenticate towards es.</description>
</property>

</configuration>
```

Expand Down