https://community.cloudera.com/t5/Archives-of-Support-Questions/Beeline-authentication/m-p/118957#M22333 <P>Hi everyone,</P><P>i have a problem with beeline authentication. I am using "hive.server2.authentication=LDAP" but it is not working. I can successfully log into beeline as any user using any, or blank password. I can just simply type some random signs and beeline recognizes it as user and successfully logs in. I would like to configure beeline, such it allows to connect users from LDAP/AD only and the correct password is required. Should it works as I mentioned above or I have some misconfiguration. The only configuration I provided is "hive.server2.authentication=LDAP" and provided necessary LDAP options. When I set "hive.server2.authentication=NONE" nothing changes (I think it works as it should - none authentication). I am using HDP2.3 with Ambari to make changes in configurations.</P><P>Thank you</P> Wed, 09 Mar 2016 16:55:59 GMT frank93 2016-03-09T16:55:59Z https://community.cloudera.com/t5/Archives-of-Support-Questions/Beeline-authentication/m-p/118957#M22333 <P>Hi everyone,</P><P>i have a problem with beeline authentication. I am using "hive.server2.authentication=LDAP" but it is not working. I can successfully log into beeline as any user using any, or blank password. I can just simply type some random signs and beeline recognizes it as user and successfully logs in. I would like to configure beeline, such it allows to connect users from LDAP/AD only and the correct password is required. Should it works as I mentioned above or I have some misconfiguration. The only configuration I provided is "hive.server2.authentication=LDAP" and provided necessary LDAP options. When I set "hive.server2.authentication=NONE" nothing changes (I think it works as it should - none authentication). I am using HDP2.3 with Ambari to make changes in configurations.</P><P>Thank you</P> Wed, 09 Mar 2016 16:55:59 GMT https://community.cloudera.com/t5/Archives-of-Support-Questions/Beeline-authentication/m-p/118957#M22333 frank93 2016-03-09T16:55:59Z https://community.cloudera.com/t5/Archives-of-Support-Questions/Beeline-authentication/m-p/118958#M22334 <P>Are you sure that uit works. I.e. have you restarted the Hive services after changing authentication to LDAP. I am pretty sure it should block you after. </P><P>I did PAM before a couple of times and I assure you when I enable that nothing works anymore if any of the other dependencies are not setup correctly.</P><P><A href="https://community.hortonworks.com/articles/591/using-hive-with-pam-authentication.html" target="_blank">https://community.hortonworks.com/articles/591/using-hive-with-pam-authentication.html</A></P> Wed, 09 Mar 2016 19:23:03 GMT https://community.cloudera.com/t5/Archives-of-Support-Questions/Beeline-authentication/m-p/118958#M22334 bleonhardi 2016-03-09T19:23:03Z https://community.cloudera.com/t5/Archives-of-Support-Questions/Beeline-authentication/m-p/118959#M22335 <P>Thanks for the answer. PAM works well for me - that means I have some misconfiguration in my LDAP. </P><P>NOTE: Access to /etc/shadow should have the user which we want to log in beeline.</P> Wed, 09 Mar 2016 21:49:06 GMT https://community.cloudera.com/t5/Archives-of-Support-Questions/Beeline-authentication/m-p/118959#M22335 frank93 2016-03-09T21:49:06Z https://community.cloudera.com/t5/Archives-of-Support-Questions/Beeline-authentication/m-p/118960#M22336 <P>Hi Edgar, Can you please check if hs2 authorization is enabled.</P><P>hive.server2.enable.authorization</P> Thu, 10 Mar 2016 01:21:18 GMT https://community.cloudera.com/t5/Archives-of-Support-Questions/Beeline-authentication/m-p/118960#M22336 vwunnava 2016-03-10T01:21:18Z