Security
Also available as:
PDF
loading table of contents...

Access

Provides Service activity data for all Policies that have Audit set to On. The default service Policy is configured to log all user activity within the Service. This default policy does not contain user and group access rules.

You can filter the data based on the following criteria:

Table 5.5. Search Criteria

Search CriteriaDescription
Access EnforcerRanger (ranger-acl) or Hadoop (hadoop-acl)
Access TypeType of access user attempted (E.G., REVOKE, GRANT, OPEN, USE).
Client IPIP address of the user system that tried to access the resource.
ResultShows whether the operation was successful or not.
Service NameThe name of the service that the user tried to access.
Service TypeThe type of the service that the user tried to access.
Start Date, End DateFilters results for a particular date range.
UserName of the user which tried to access the resource.
Cluster NameCluster name. Can be defined under Ambari>component>Configs>Advanced>ranger-component-audit file, using ranger.plugin.component.ambari.cluster.name=cluster_name.

Ranger Console Audit tab, Access sub-tab

Ranger Console Audit tab, Access sub-tab, showing tag attribute details