Enable monitoring for specific Hadoop components.
About this task
This task describes how to define which Hadoop components are enabled for monitoring with
Guardium.
Procedure
-
Navigate to .
-
To begin configuring services, click the
for a Hadoop cluster.
-
Use the Service menu to select the Hadoop component on which to enable
monitoring.
-
Use the S-TAP host name / IP menu to select the S-TAP tat should collect
audit events from Ranger.
-
In the Port number field, provide the listener port number.
If you leave this field blank, the service will use the default port of 5555.
-
Select Activate monitoring immediately to enable monitoring for the
selected services.
-
Click the Save button to save the services configuration.
Attention: The Hadoop administrator must restart the Hadoop service to activate the
changes made to the services configuration. Before restarting the service, have the administrator
verify the following log4j
configuration:
# Configuration for Guardium integration with Ranger log4j logging.
log4j.appender.guardlistener=org.apache.log4j.net.SocketAppender
log4j.appender.guardlistener.Port=5555
log4j.appender.guardlistener.RemoteHost=hw-cl5-01.guard.swg.usma.ibm.com
log4j.logger.xaaudit=ALL,guardlistener
Also
have the Hadoop administrator verify the following settings in
custom
ranger-<service>-audit:
xasecure.audit.destination.log4j=true
xasecure.audit.destination.log4j.logger=xaaudit
Results
From the Hadoop Monitoring page, verify that the enabled services are
marked with a green check mark icon. If the service does not display port
information and the S-TAP status is S-TAP not installed, edit the
configuration and specify a valid S-TAP.