Hi Team, I am trying to setup authentication and authorization for Zeppelin using Shiro file. Now my question is How we can set Zeppelin interpreter settings to be restricted to a particular AD admin user.
Here is the sample of my shiro file . [main] activeDirectoryRealm = org.apache.zeppelin.realm.ActiveDirectoryGroupRealm activeDirectoryRealm.systemUsername = adminuser1 activeDirectoryRealm.systemPassword = ^^^^^^ #activeDirectoryRealm.hadoopSecurityCredentialPath = jceks://user/zeppelin/zeppelin.jceks activeDirectoryRealm.searchBase = "OU=AADDC Users,DC=team2testdomain,DC=testabc ,DC=com" activeDirectoryRealm.url = ldaps://team2testdomain.testabc.com:636 activeDirectoryRealm.principalSuffix = @TEAM2TESTDOMAIN.testabc.COM activeDirectoryRealm.groupRolesMap = "OU=AADDC Users,DC=team2testdomain,DC= testabc,DC=com":"admin" activeDirectoryRealm.authorizationCachingEnabled = true sessionManager = org.apache.shiro.web.session.mgt.DefaultWebSessionManager cacheManager = org.apache.shiro.cache.MemoryConstrainedCacheManager securityManager.cacheManager = $cacheManager securityManager.sessionManager = $sessionManager # 86,400,000 milliseconds = 24 hour securityManager.sessionManager.globalSessionTimeout = 86400000 shiro.loginUrl = /api/login [urls] # anon means the access is anonymous. # authcBasic means Basic Auth Security # To enfore security, comment the line below and uncomment the next one #/** = anon /** = authc Thanks Vartul
