In order to connect to the HDP Security Administration server, both the HTTP (default 6080) and to uploads/pulls information using the repository named in the connection URL.
Use telnet to test the connection:
Check the URL for the portal in the agent configuration file,
xasecure-
. This file is located in the configuration directory of the Hadoop service ($service-name
-security.xml/etc/
).$servicename
/confFor example:
more /etc/hbase/conf/xasecure-hbase-security.xml ...... <property> <name>xasecure.hbase.policymgr.url</name> <value>http://policymgr:6080/service/assets/policyList/sandbox_2_hbase</value> <description> Location where XASecure Role Based Authorization Info is located. </description> </property> .......
Telnet to the HTTP port from the agent host to the HDP Security Administration server:
telnet policymgr 6080 Trying 192.168.56.101... Connected to policymgr. Escape character is '^]'.
Note If either of the connections fail, then check your firewall and SELinux settings.
If you are able to connect, verify the repository name matches on the server and agent:
Sign in to the HDP Security Administration Web UI.
Click
> . The name of the repository in the UI must match the name shown at the end of thexasecure.hbase.policymgr.url
.For example, this agent sends information to the HBase repository named
sandbox_2_hbase
:<value>http://policymgr:6080/service/assets/policyList/sandbox_2_hbase</value>