Cloudera Community

Support Questions

Find answers, ask questions, and share your expertise
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Advanced Search
Announcements
Celebrating as our community reaches 100,000 members! Thank you!
Solved Go to solution

HDFS ACL

avatar
author-rank robinwood
Explorer

Created on ‎07-06-2015 04:38 AM - edited ‎09-16-2022 02:33 AM

Hi All ,

 

I am facing issue while enabling the acl, As per the CDH document for enabling the ACL we need to set acl enable to true.

 

<property>
<name>dfs.namenode.acls.enabled</name>
<value>true</value>
</property>

 

I have updated the same in below hdfs-site.xml files, post enabling the ACL, I restart the namenode service from CDH console.

 

/etc/hadoop/conf.cloudera.hdfs/hdfs-site.xml

/etc/hadoop/conf/hdfs-site.xml

 

 

While setting the ACL for a directory I am getting the below error.

 

" setfacl: The ACL operation has been rejected. Support for ACLs has been disabled by setting dfs.namenode.acls.enabled to false"

 

And please let me know in which hdfs-site.xml I should enable the acl in the below location I could see the hdfs-site.xml files.

 

/etc/hadoop/conf/hdfs-site.xml

 

/etc/hive/conf.cloudera.hive/hdfs-site.xml

/etc/hadoop/conf.cloudera.hdfs/hdfs-site.xml

/etc/hadoop/conf.cloudera.yarn/hdfs-site.xml

 

/var/run/cloudera-scm-agent/process/49-hdfs-NAMENODE/hdfs-site.xml

/var/run/cloudera-scm-agent/process/45-hdfs-SECONDARYNAMENODE/hdfs-site.xml

 

Please let know the appropriate file for enabling the ACL.

 

Thanks

6,919 Views
0 Kudos
1 ACCEPTED SOLUTION

avatar
author-rank GautamG
Guru

Created ‎07-06-2015 05:15 AM

Cloudera Manager manages two sets of properties:
- client side is in /etc/SERVICE/conf (SERVICE is hadoop, hive, etc)
- /var/run/cloudera-scm-agent/process/ID-service-ROLE

For service properties, edit it in CM and it will appear in /var/run on the
next restart of the role. Please read this blog post about how Cloudera
Manager works, it should be clearer to you.

http://blog.cloudera.com/blog/2013/07/how-does-cloudera-manager-work/

Regards,
Gautam Gopalakrishnan

View solution in original post

6,919 Views
0 Kudos
4 REPLIES 4

avatar
author-rank GautamG
Guru

Created ‎07-06-2015 05:15 AM

Cloudera Manager manages two sets of properties:
- client side is in /etc/SERVICE/conf (SERVICE is hadoop, hive, etc)
- /var/run/cloudera-scm-agent/process/ID-service-ROLE

For service properties, edit it in CM and it will appear in /var/run on the
next restart of the role. Please read this blog post about how Cloudera
Manager works, it should be clearer to you.

http://blog.cloudera.com/blog/2013/07/how-does-cloudera-manager-work/

Regards,
Gautam Gopalakrishnan
6,920 Views
0 Kudos

avatar
author-rank robinwood
Explorer

Created ‎07-07-2015 06:36 AM

 

Gautham,

 

Thanks a lot,

6,880 Views
0 Kudos

avatar
author-rank srikantitalluri
New Contributor

Created ‎11-16-2015 11:05 PM

I changed hdfs-site.xml under /etc/hadoop/ and restarted name-node. However, I don't see the acl-edit RPC are accepted.

 

hdfs@qa-node109:/root$ hdfs dfs -setfacl  -m user:priv:rw- /testfile

setfacl: The ACL operation has been rejected.  Support for ACLs has been disabled by setting dfs.namenode.acls.enabled to false.

 

What did I miss here?

 

 

6,672 Views
0 Kudos

avatar
author-rank srikantitalluri
New Contributor

Created ‎11-16-2015 11:06 PM

I meant the hdfs-site.xml under /etc/hadoop/conf
6,671 Views
0 Kudos
Announcements
Product Announcements
[ANNOUNCE] Cloudera on Public Cloud Runtime 7.2.18 is GA!
What's New @ Cloudera
Cloudera Operational Database (COD) supports enhancements to...
Community Announcements
March 2024 Community Highlights
Community Announcements
Celebrating 100,000 Members: A Journey of Growth and Connect...
Product Announcements
[ANNOUNCE] New Cloudera JDBC Connector for Apache Hive 2.6.2...
View More Announcements