Beeline : Access denied to Hive

bytebiscuit · ‎03-22-2018

We obtain a hive ticket in Kerberos and connect to beeline successfully.

Once in beeline, we run: show roles to see Sentry roles but we get a “ ……… Access denied to hive”

In the log file it says that:

…………………..HadoopGroupsMappingService: unable to obtain group for hive

………………………………………………………

……………………………………

…………

How do I go around this issue. How to add a new admin user in Sentry or make the hive user an admin user in Sentry.

GeKas · ‎01-08-2018

In general, admin groups are added in sentry's configuration -> https://www.cloudera.com/documentation/enterprise/latest/topics/sg_sentry_service_config.html#concep...

Your issue is that hive user is not configured properly. Did you manually created users?

If you run "id hive" in your system, the user hive should belong to group hive. If you fix this, probably you should be able to set sentry rules as hive, because by default hive group should be defined as admin group.

If you are not using Cloudera Manager, then set "sentry.service.admin.group"

Beeline : Access denied to Hive

Re: Beeline : Access denied to Hive

Host Inspector TLS issue

Memory limit exceeded on insert

can't delete bad node from the cluster using pytho...

Giving an alias to the to the data points in the C...

Oracle-j2sdk1.8 installation failed - Cloudera Man...

Cloudera Manager user activity audit

Unable to access NameNode in cross realm trust bet...

Impala failures after LDAP integration

Retention policy for Cloudera Management Services

Cloudera manager install on single rhel7 linux box

Namenode and Journalnodes are not restarting

Failed to query data from hbase thrift server in C...

Unable to start YARN - NodeManager on role NodeMan...

Hue: disabling LDAP does not enable local "Add use...

Clarifications on LDAP integration