Apache Ranger Reviews & Product Details

Centralized access to manage all of hadoop ecosystem access control, Hive, Presto and HDFS is plugins are easily managed through Ranger today.

Our story with Hive: We have used hive extensively in our ecosystem and we used to manage the user access from SQL based hive access control, Over the period of time when more and more users are on boarded to the system it was impossible to manage the access control and very difficult to manage it, That's when Apache Ranger came as rescue and we could manage 600+ policies.

Our story with Presto: In a federated environment we wanted to access control multiple connectors within one roof, That's where presto-ranger-plugin saves you. In a presto world there is no other access control is as powerful as Apache Ranger. Review collected by and hosted on G2.com.

- Helps in achieving fine-grained access control in your Big Data workload clusters.

- Apache Ranger supports a vast number of plugins support already available [HDFS, HBase, Yarn, Atlas, Knox, Solr, Kafka, NiFi, etc]

- Very easy to use and manage authorization in your production clusters and track audits to avoid any unwanted access. Review collected by and hosted on G2.com.

I personally found it a very useful tool, So I will recommend going for it without thinking twice Review collected by and hosted on G2.com.

In our project we had the cluster in on-prem servers, We had individual users. But managing authorization for individual users is quite difficult. Apache Ranger helped to overcome this problem. Like using this service we managed who can access what. Using Ranger we limited the users and its quite easy to do so with the help of Ranger UI Review collected by and hosted on G2.com.

We should work on improving the documentation that what all features are available and how we can implement these features. Their were number of occasion were we got stuck as we were totally unaware that how we can debug issues related to ranger or implement some of it's features and had to wait for an expert. Review collected by and hosted on G2.com.

We use to integrate Ranger with Hive and control the access to AD users on the Hive databases. Review collected by and hosted on G2.com.

centralized policy management for in production Hadoop ecosystem

Ranger provides dynamic data masking (in movement) for several frameworks of the Hadoop stack (e.g., HBase, Storm, Knox, Solr, Kafka, and YARN). Our recently published paper in the FGCS (Q1 journal) https://www.sciencedirect.com/science/article/pii/S0167739X19315948 used the Ranger admin console to set/modify policies (policy enforcement). In that research, we defined a reference architecture for big data systems that utilize Apache Ranger and the ACL to manage repository policies. Ranger will verify the fine-grain client access control, i.e., which HBase/Hive DB and table columns they have access to, Kafka queues, and HDFS level of access. Meanwhile, the ACL will verify the access control of the remaining entities. However, Ranger policies will take priority over those of ACL. If a Ranger policy does not exist, then local ACL will take effect. Hadoop daemon authentications and internal communication (such as task status) will primarily rely on using the Kerberos principal and keytab file locations and are enforced using Hadoop core access control, i.e., ACL.

Another case was employing the Ranger Audit Server in the Hadoop federation configuration. Our proposed big data federation access broker will aggregate all access logs into a centralized repository (RDBMS, HDFS, or Log4j). We demonstrate how to use Ranger and other frameworks for Audit Management and Analysis. In sum, Apache Ranger provides centralized Hadoop security administration and management, while Knox streamlines security for services and external users who access the cluster's data and execute jobs. Review collected by and hosted on G2.com.

Ranger is a very handy tool to manage Hadoop permissions and many more things. Review collected by and hosted on G2.com.

access control policies can be managed by security administrators consistently across Hadoop environment. Ranger also enables the community to add new systems for authorisation even outside Hadoop ecosystem, with a robust plugin architecture, that can extend with minimal effort. Review collected by and hosted on G2.com.

Mostly Access control and Governance. Review collected by and hosted on G2.com.

You have lot of analyst making use of PII data , and you are facing problems controlling access anf monitoring data lineage do check out apache ranger Review collected by and hosted on G2.com.

Data masking of customer related data at query time . Review collected by and hosted on G2.com.

We have implemented solutions using Apache Ranger at various client locations to solve the concerns about centralised policy and authorisation management for the Hadoop components. We can generate the audit reports, who accessed what and when. Review collected by and hosted on G2.com.

Expecting a better way of secured environment? Apache Ranger is the one to select, which can be installed and configure in minutes. Review collected by and hosted on G2.com.

User access provisioning.

Auditing.

DEK of encrypted zones Review collected by and hosted on G2.com.