About Release 7.10.0
This site contains documentation for HPE Ezmeral Data Fabric release 7.10.0, including installation, configuration, administration, and reference content, as well as content for the associated ecosystem components and drivers.
7.10.0 Installation
This section contains information about installing HPE Ezmeral Data Fabric software. It also contains information about how to migrate data and applications from an Apache Hadoop cluster to a HPE Ezmeral Data Fabric cluster.
7.10.0 Upgrade
This section describes how to upgrade HPE Ezmeral Data Fabric software.
7.10.0 Data Fabric
HPE Ezmeral Data Fabric is the industry-leading data platform for AI and analytics that solves enterprise business needs.
7.10.0 Administration
This section describes how to manage the nodes and services that make up a cluster.
7.10.0 Development
This section contains information related to application development for Ezmeral ecosystem components and HPE Ezmeral Data Fabric products, including the file system, Database (Key-Value and JSON), and Event Streams.
- Application Development Process
  Before you start developing applications on the HPE Ezmeral Data Fabric platform, consider how you will get the data into the platform, the storage format of the data, the type of processing or modeling that is required, and how the data will be accessed.
- File Store and Apps
  The following sections provide information about accessing the File Store with C and Java applications.
- HPE Ezmeral Data Fabric Database and Apps
  This section contains information about developing client applications for JSON and key-value tables.
- Apache Kafka Wire Protocol Service
  HPE Ezmeral Data Fabric Streams supports Apache Kafka Wire Protocol Service. Apache Kafka Wire Protocol Service is a TCP/IP service that emulates a Kafka cluster backed by HPE Ezmeral Data Fabric Streams. The service makes it possible for Apache Kafka clients written in any programming language to access topics in HPE Ezmeral Data Fabric Streams.
- HPE Ezmeral Data Fabric Streams and Apps
  HPE Ezmeral Data Fabric Streams brings integrated publish and subscribe messaging to HPE Ezmeral Data Fabric.
- MapReduce and Apps
  This section contains information associated with developing YARN applications.
- Kubernetes Interfaces for Data Fabric
  This section describes how to leverage the capabilities of the Kubernetes Interfaces for Data Fabric.
- Ecosystem Components
  The following sections provide information about each open-source project that is supported by the HPE Ezmeral Data Fabric.
  - Ecosystem Packs
  - Apache Airflow
    This topic provides an overview of Apache Airflow on HPE Ezmeral Data Fabric.
  - AsyncHBase
  - Cascading
  - Apache Drill
  - Hadoop
  - HBase
  - HBase Client and HPE Ezmeral Data Fabric Database Binary Tables
  - HCatalog
  - Hive
  - HttpFS
  - Hue
  - Livy
    Apache Livy is primarily used to provide integration between Hue and Spark.
  - HPE Ezmeral Data Fabric Streams Clients and Tools
    Describes the supported HPE Ezmeral Data Fabric Streams tools and clients.
  - NiFi
    This topic provides an overview of Apache NiFi on HPE Ezmeral Data Fabric.
  - OTel
    This topic provides an overview of OpenTelemetry on HPE Ezmeral Data Fabric.
  - Ranger
    - Getting Started with Ranger
      Describes how to start using Apache Ranger with the HPE Ezmeral Data Fabric.
    - Configuring Ranger
      Describes how to set up Ranger services and run the configuration script.
    - Starting, Stopping, and Restarting Ranger Services
      Describes how to start, stop, and restart Ranger services on the HPE Ezmeral Data Fabric.
    - Configuring Security for Ranger
      Describes how to configure security for Ranger.
    - Configuring LDAP/AD for Ranger
      Describes how to configure Ranger security so that the Ranger Admin service authenticates users through LDAP authentication, and the Ranger UserSync service sources users and groups from LDAP storage.
    - Integrating HiveServer2 with Ranger
      Describes how to integrate HiveServer2 with Ranger.
    - Integrating Hive Metastore with Ranger
      Describes how to integrate Hive Metastore with Ranger.
    - Integrating Yarn with Ranger
      Describes how to integrate Yarn with Ranger.
    - Ranger Security and Data Fabric Security
      Describes how Ranger security supplements the security features provided by the HPE Ezmeral Data Fabric.
    - Syncing Keycloak Users, Groups and Roles with Ranger
      Describes how to sync the Keycloak Users, Groups, and Roles so that the Ranger admin authorizes the users and groups to manage the policies and users.
  - Apache Spark
  - YARN
  - Zeppelin
- Maven and the HPE Ezmeral Data Fabric
  This section discusses topics associated with Maven and the HPE Ezmeral Data Fabric.
- Developer's Reference
  This section contains in-depth information for the developer.
- API Documentation
  HPE Ezmeral Data Fabric supports public APIs for file system, HPE Ezmeral Data Fabric Database, and HPE Ezmeral Data Fabric Streams. These APIs are available for application-development purposes.
Other Docs
This section contains release-independent information, including: Installer documentation, Ecosystem release notes, interoperability matrices, security vulnerabilities, and links to other Data Fabric version documentation.
Glossary
Definitions for commonly used terms in MapR Converged Data Platform environments.

Syncing Keycloak Users, Groups and Roles with Ranger

Describes how to sync the Keycloak Users, Groups, and Roles so that the Ranger admin authorizes the users and groups to manage the policies and users.

Configuring SSO authentication for Ranger Admin happens by default similar to the way it happens for other EEP components. However, this is only authentication, and not authorization. Users logged in via SSO by default won't be able to manage policies and users.

You can solve this problem by syncing Users, Groups, and Roles from Keycloak to Ranger Admin.

To Sync Users, Groups, and Roles from Keycloak to Ranger, do the following:

Create a dedicated user (for example, usersync) in your Keycloak realm with view-users role, from built-in realm-management client. See Keycloak Documentation for details.
To sync the users, groups, and roles from Keycloak to the Ranger admin, set the following properties in /opt/mapr/ranger/ranger-<version>/ranger-usersync/install.properties:
```
SYNC_SOURCE=keycloak
SYNC_KEYCLOAK_USERNAME=<username>
SYNC_KEYCLOAK_PASSWORD=<password>
```
Here username and password are credentials of the dedicated user created earlier in Keycloak.
NOTE
Keycloak users with fabric-manager role will get the administrator privileges in Ranger Admin.
Run the Ranger Admin setup.sh script to configure the new options:
```
sudo /opt/mapr/ranger/ranger-<version>/ranger-usersync/setup.sh
```
Run the configuration script:
```
sudo /opt/mapr/server/configure.sh -R
```

Partners Support Dev-Hub Community ALA Privacy Policy Glossary

HPE Ezmeral Data Fabric 7.10.0 Documentation
Abstract	This site contains documentation for the customer-managed platform of the HPE Ezmeral Data Fabric version 7.10.0 including installation, configuration, administration, and reference content, as well as content for the associated bundled ecosystem components and drivers.
Published	April 2025
Edition	7.10.0
Topic last updated	2025-04-17