Cloudera Community

Archives of Support Questions (Read Only)

This is an archived board for historical reference. Information and links may no longer be available or relevant
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Advanced Search
Announcements
This board is archived and read-only for historical reference. To ask a new question, please post a new topic on the appropriate active board.
Solved Go to solution

Should we remove Hive CLI roles & grants before enabling Ranger Authorization in Hive?

Labels:
avatar
author-rank james_jones author-rank
Master Collaborator

Created ‎06-29-2016 04:54 PM

We are enabling the Ranger authorization in Hive, but previously we created roles & grants in beeline. Should we remove manually created Hive grants and roles in beeline before switching from StdSqlAuth to Ranger authorization or will magic happen? The roles we created match our AD group names in the policies. (HDP 2.4)

1,732 Views
1 ACCEPTED SOLUTION

avatar
author-rank KuldeepK author-rank
Master Guru

Created ‎06-29-2016 05:05 PM

@james.jones - I don't think so as you are modifying authorization property, it should not consider sql grants once you set authorization to Ranger.

Please also have a look at https://community.hortonworks.com/questions/28136/will-ranger-hive-plugin-override-existing-hive-sec...

View solution in original post

1,587 Views
2 REPLIES 2

avatar
author-rank KuldeepK author-rank
Master Guru

Created ‎06-29-2016 05:05 PM

@james.jones - I don't think so as you are modifying authorization property, it should not consider sql grants once you set authorization to Ranger.

Please also have a look at https://community.hortonworks.com/questions/28136/will-ranger-hive-plugin-override-existing-hive-sec...

1,588 Views

avatar
author-rank james_jones author-rank
Master Collaborator

Created ‎06-29-2016 05:12 PM

Awesome. Thanks. I wasn't sure if under the covers Ranger was just doing sql grants.

1,587 Views
0 Kudos
Announcements
What's New @ Cloudera
Cloudera Real time Monitoring for 7.1.9+ and 7.2.18+ with Cl...
What's New @ Cloudera
Announcing Cloudera Streaming Analytics 1.17: Python UDFs, S...
Community Announcements
Content Update: Evolving Our Community Content for Better, A...
Community Announcements
Product Name Updates — Community Label Changes & Notificatio...
What's New @ Cloudera
Announcing Cloudera Data Lineage for Trino
View More Announcements