Skip to content

Configuring default username for admimistering ranger admin

Overview

Privacera Ranger allows the configuration of a default username for administering the Ranger Admin service. This username can also be used to log in to the Ranger Admin through the Privacera Portal to manage policies and other configurations.

Configure Ranger Proxy User.

Follow these steps to configure the default username for administering the Ranger Admin service:

  1. SSH into the instance where Privacera Manager is installed.
  2. Navigate to the privacera-manager directory using the following command:
    Bash
    1
    cd ~/privacera/privacera-manager/
  3. Run the following command to copy the sample vars. The -n flag ensures that the file is not overwritten if it already exists:
    Bash
    1
    cp -n config/sample-vars/vars.ranger.admin.yml config/custom-vars/
  4. Run the following command to open the .yml file for editing.
    Bash
    1
    vi config/custom-vars/vars.ranger.admin.yml

  5. Add or update the following property:

    Variable Definition
    RANGER_PROXY_USERS_LIST List of ranger users that can be allowed from ranger as a proxy user. Default is "admin"
    YAML
    1
2
3
4
    RANGER_PROXY_USERS_LIST: 
 - "admin"
 - "testuser"
 - "testuser1"

  6. Once the properties are configured, update your Privacera Manager platform instance by following the

    Bash
    1
2
3
    cd ~/privacera/privacera-manager
./privacera-manager.sh setup
./pm_with_helm.sh upgrade

The default Ranger proxy user is admin, and additional users can be added to the RANGER_PROXY_USERS_LIST property to grant administrative access to the Ranger Admin service. The admin user serves as the default proxy user for administering the Ranger Admin service from the Privacera Portal. If the admin user is not included in the RANGER_PROXY_USERS_LIST, administrators should refer to the Updating Password for Ranger Service Users guide to update the credentials for an alternative user.

Comments