https://community.cloudera.com/t5/Archives-of-Support-Questions/Hive-Security-using-Apache-Ranger/m-p/173284#M45966 <A href="https://community.cloudera.com/legacyfs/online/attachments/9372-screen-shot-2016-11-11-at-114102-am.png">screen-shot-2016-11-11-at-114102-am.png</A><P><A href="https://community.cloudera.com/legacyfs/online/attachments/9373-screen-shot-2016-11-11-at-114026-am.png">screen-shot-2016-11-11-at-114026-am.png</A></P><P>Hello All,</P><P>I've configured Hive Security using Apache Ranger, however have a basic question since it doesnt seem t be working as i expected.</P><P>Link followed -&gt; </P><P><A href="http://hortonworks.com/hadoop-tutorial/manage-security-policy-hive-hbase-knox-ranger/" target="_blank">http://hortonworks.com/hadoop-tutorial/manage-security-policy-hive-hbase-knox-ranger/</A></P><P>Here is the scenario :</P><P>for user - raj_ops, i've removed access to Hive tables (all tables) through Apache Ranger </P><P>So, when i try to execute the following query using user - "Hive view" through Ambari, as expected - access is denied.</P><P>Next Step -</P><P>I logon to sandbox console using user - raj_ops, and logon to hive, and query table "customer" - I'm able to access the rows in the table !</P><P>Any idea why this is so, and what do i need to ensure user - raj_ops is not able to access the Hive table.</P><P>STEPS used for logging in to Sandbox &amp; querying</P><P>&gt; ssh raj_ops@sandbox.hortonworks.com -p 222</P><P>&gt; hive</P><P>&gt; use foodmart</P><P>&gt; select * from foodmart.customer;</P><P>Pls see screenshot attached, raj_ops is able to access the table contents !</P> Sat, 12 Nov 2016 03:43:14 GMT karan_alang1 2016-11-12T03:43:14Z https://community.cloudera.com/t5/Archives-of-Support-Questions/Hive-Security-using-Apache-Ranger/m-p/173284#M45966 <A href="https://community.cloudera.com/legacyfs/online/attachments/9372-screen-shot-2016-11-11-at-114102-am.png">screen-shot-2016-11-11-at-114102-am.png</A><P><A href="https://community.cloudera.com/legacyfs/online/attachments/9373-screen-shot-2016-11-11-at-114026-am.png">screen-shot-2016-11-11-at-114026-am.png</A></P><P>Hello All,</P><P>I've configured Hive Security using Apache Ranger, however have a basic question since it doesnt seem t be working as i expected.</P><P>Link followed -&gt; </P><P><A href="http://hortonworks.com/hadoop-tutorial/manage-security-policy-hive-hbase-knox-ranger/" target="_blank">http://hortonworks.com/hadoop-tutorial/manage-security-policy-hive-hbase-knox-ranger/</A></P><P>Here is the scenario :</P><P>for user - raj_ops, i've removed access to Hive tables (all tables) through Apache Ranger </P><P>So, when i try to execute the following query using user - "Hive view" through Ambari, as expected - access is denied.</P><P>Next Step -</P><P>I logon to sandbox console using user - raj_ops, and logon to hive, and query table "customer" - I'm able to access the rows in the table !</P><P>Any idea why this is so, and what do i need to ensure user - raj_ops is not able to access the Hive table.</P><P>STEPS used for logging in to Sandbox &amp; querying</P><P>&gt; ssh raj_ops@sandbox.hortonworks.com -p 222</P><P>&gt; hive</P><P>&gt; use foodmart</P><P>&gt; select * from foodmart.customer;</P><P>Pls see screenshot attached, raj_ops is able to access the table contents !</P> Sat, 12 Nov 2016 03:43:14 GMT https://community.cloudera.com/t5/Archives-of-Support-Questions/Hive-Security-using-Apache-Ranger/m-p/173284#M45966 karan_alang1 2016-11-12T03:43:14Z https://community.cloudera.com/t5/Archives-of-Support-Questions/Hive-Security-using-Apache-Ranger/m-p/173285#M45967 <P>@<A href="https://community.hortonworks.com/users/14047/karanalang.html">Karan Alang</A></P><P>Hive shell is not secured through ranger, its only hiveserver2. </P><P>Try what you were trying using beeline or a JDBC app. It should not allow you to get in.</P> Sat, 12 Nov 2016 04:09:46 GMT https://community.cloudera.com/t5/Archives-of-Support-Questions/Hive-Security-using-Apache-Ranger/m-p/173285#M45967 srai1 2016-11-12T04:09:46Z