Security for Open Source Components
Open source components on a MapR cluster have several options for security. See the Ecosystem Guide for component-specific instructions.
General Security Configuration with JAAS
Open source components in the MapR distribution for Hadoop use the Java Authentication and Authorization Service (JAAS) for security configuration. The
/opt/mapr/conf/mapr.login.conf file defines JAAS configurations. The
MAPR_ECOSYSTEM_LOGIN_OPTS environment variable in the
/opt/mapr/conf/env.sh file specifies the JAAS configuration used by installed open source components. When security is enabled, the value of the
MAPR_ECOSYSTEM_LOGIN_OPTS environment variable is modified to include the
hybrid JVM option for
hadoop.login. This is equivalent to setting the
-Dhadoop.login=hybrid flag at the command line.This setting specifies a mixed security environment using Kerberos and internal MapR security technologies.
mapr.login.conf file has two stanzas for hybrid security: