LDAP
[root@hdp certs]# ldapsearch -x -b "dc=wondersoft,dc=cn"
。。。
# trust admins, groups, accounts, wondersoft.cn
dn: cn=trust admins,cn=groups,cn=accounts,dc=wondersoft,dc=cn
cn: trust admins
objectClass: top
objectClass: groupofnames
objectClass: ipausergroup
objectClass: nestedgroup
objectClass: ipaobject
member: uid=admin,cn=users,cn=accounts,dc=wondersoft,dc=cn
description: Trusts administrators group
ipaUniqueID: c5bd5f46-f42c-11e6-974c-005056840e39
。。。
[root@hdp certs]# ldapsearch -x -b "dc=wondersoft,dc=cn" "uid=admin"
# extended LDIF
#
# LDAPv3
# base <dc=wondersoft,dc=cn> with scope subtree
# filter: uid=admin
# requesting: ALL
#
# admin, users, compat, wondersoft.cn
dn: uid=admin,cn=users,cn=compat,dc=wondersoft,dc=cn
objectClass: posixAccount
objectClass: top
gecos: Administrator
cn: Administrator
uidNumber: 1124800000
gidNumber: 1124800000
loginShell: /bin/bash
homeDirectory: /home/admin
uid: admin
# admin, users, accounts, wondersoft.cn
dn: uid=admin,cn=users,cn=accounts,dc=wondersoft,dc=cn
objectClass: top
objectClass: person
objectClass: posixaccount
objectClass: krbprincipalaux
objectClass: krbticketpolicyaux
objectClass: inetuser
objectClass: ipaobject
objectClass: ipasshuser
objectClass: ipaSshGroupOfPubKeys
uid: admin
krbPrincipalName: admin@WONDERSOFT.CN
cn: Administrator
sn: Administrator
uidNumber: 1124800000
gidNumber: 1124800000
homeDirectory: /home/admin
loginShell: /bin/bash
gecos: Administrator
ipaUniqueID: 9b13df3c-f42b-11e6-803a-005056840e39
krbLastPwdChange: 20170216094716Z
krbPasswordExpiration: 20170517094716Z
krbExtraData:: AAIkdaVYcm9vdC9hZG1pbkBXT05ERVJTT0ZULkNOAA==
krbLastSuccessfulAuth: 20170217031046Z
Ranger
https://cwiki.apache.org/confluence/display/RANGER/Configure+Ranger+UserSync+for+LDAP
http://www.jianshu.com/p/165c2f5d4159