https://community.cloudera.com/t5/Support-Questions/Namenode-logs-access-control/m-p/117639#M80422 <P><A rel="user" href="https://community.cloudera.com/users/1420/garunkumar85.html" nodeid="1420">@AR</A></P><P>See this </P><P>Hint : it may not be exact solution </P><P><A href="http://hortonworks.com/blog/hadoop-groupmapping-ldap-integration/" target="_blank">http://hortonworks.com/blog/hadoop-groupmapping-ldap-integration/</A></P> Sat, 30 Jan 2016 03:41:23 GMT nsabharwal 2016-01-30T03:41:23Z https://community.cloudera.com/t5/Support-Questions/Namenode-logs-access-control/m-p/117635#M80418 <P>How to restrict access to <STRONG>Name node</STRONG> logs for a particular users/groups?</P> Sat, 30 Jan 2016 02:33:26 GMT https://community.cloudera.com/t5/Support-Questions/Namenode-logs-access-control/m-p/117635#M80418 garunkumar85 2016-01-30T02:33:26Z https://community.cloudera.com/t5/Support-Questions/Namenode-logs-access-control/m-p/117636#M80419 <P><A rel="user" href="https://community.cloudera.com/users/1420/garunkumar85.html" nodeid="1420">@AR</A> That will based on your POSIX access level. Chmod and Chown </P><P>Make sure users are not part of hdfs/hadoop group.</P><P>Don't let users login to Master nodes. Restrict access to edge nodes only</P> Sat, 30 Jan 2016 02:35:10 GMT https://community.cloudera.com/t5/Support-Questions/Namenode-logs-access-control/m-p/117636#M80419 nsabharwal 2016-01-30T02:35:10Z https://community.cloudera.com/t5/Support-Questions/Namenode-logs-access-control/m-p/117637#M80420 <P><A rel="user" href="https://community.cloudera.com/users/140/nsabharwal.html" nodeid="140">@Neeraj Sabharwal</A> Thank you for your response. But what if we need to allow users to view the logs (read only) through Ambari only not even edge node access.</P><P>just this url access </P><P><A href="http://domainame:50070/logs/" target="_blank">http://domainame:50070/logs/</A></P> Sat, 30 Jan 2016 03:34:39 GMT https://community.cloudera.com/t5/Support-Questions/Namenode-logs-access-control/m-p/117637#M80420 garunkumar85 2016-01-30T03:34:39Z https://community.cloudera.com/t5/Support-Questions/Namenode-logs-access-control/m-p/117638#M80421 <P><A rel="user" href="https://community.cloudera.com/users/1420/garunkumar85.html" nodeid="1420">@AR</A> see this </P><P><A href="http://hortonworks.com/blog/hadoop-groupmapping-ldap-integration/" target="_blank">http://hortonworks.com/blog/hadoop-groupmapping-ldap-integration/</A></P> Sat, 30 Jan 2016 03:39:23 GMT https://community.cloudera.com/t5/Support-Questions/Namenode-logs-access-control/m-p/117638#M80421 nsabharwal 2016-01-30T03:39:23Z https://community.cloudera.com/t5/Support-Questions/Namenode-logs-access-control/m-p/117639#M80422 <P><A rel="user" href="https://community.cloudera.com/users/1420/garunkumar85.html" nodeid="1420">@AR</A></P><P>See this </P><P>Hint : it may not be exact solution </P><P><A href="http://hortonworks.com/blog/hadoop-groupmapping-ldap-integration/" target="_blank">http://hortonworks.com/blog/hadoop-groupmapping-ldap-integration/</A></P> Sat, 30 Jan 2016 03:41:23 GMT https://community.cloudera.com/t5/Support-Questions/Namenode-logs-access-control/m-p/117639#M80422 nsabharwal 2016-01-30T03:41:23Z https://community.cloudera.com/t5/Support-Questions/Namenode-logs-access-control/m-p/117640#M80423 <P>Hi <A href="https://community.hortonworks.com/users/1420/garunkumar85.html">@AR</A>, the '/logs' servlet is admin-only. There is no way to expose it to non-privileged users.</P><P>HDFS administrators are configured via dfs.cluster.administrators, although you obviously don't want to add arbitrary users to this list just to get logs servlet access.</P> Sat, 30 Jan 2016 04:29:27 GMT https://community.cloudera.com/t5/Support-Questions/Namenode-logs-access-control/m-p/117640#M80423 ArpitAgarwal 2016-01-30T04:29:27Z