Cloudera Community

Archives of Support Questions (Read Only)

This is an archived board for historical reference. Information and links may no longer be available or relevant
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Advanced Search
Announcements
This board is archived and read-only for historical reference. To ask a new question, please post a new topic on the appropriate active board.
Solved Go to solution

User should see only his/his group tables and HDFS directories( level 1 or root directory)

Labels:
avatar
author-rank divakarreddy_a
Guru

Created on ‎03-21-2016 06:29 AM - edited ‎09-16-2022 03:10 AM

Hi,

We are running HDP2.3.4 cluster at Enterprise Level and around 5 BI Business Units are connecting to the Hadoop cluster.

They are creating tables and importing files using Hive Views & HDFS Files View but here every BI Business unit is viewing others tables( I mean only table names and not the data) in hive views and data directories on HDFS as well(level 1 directory or root directory)

Based on Linux permission & Linux group policies we implemented access control mechanism on table’s data & sub directories but we are not able to hide table names and parent directories(level 1 directory) in HDFS.

Suggest me if we have right solution?

1,587 Views
1 ACCEPTED SOLUTION

avatar
author-rank amiller
Guru

Created ‎03-21-2016 02:26 PM

Database and table metadata is stored in the Hive Metastore, not in HDFS, so a different approach is needed to restrict this info from being sent to HiveServer2 clients.

This feature was added in Hive 1.2.0 by HIVE-9350. You may need to use Ranger to achieve this functionality, which was added in RANGER-238. Both of these features are included in HDP 2.3.0+

View solution in original post

1,417 Views
1 REPLY 1

avatar
author-rank amiller
Guru

Created ‎03-21-2016 02:26 PM

Database and table metadata is stored in the Hive Metastore, not in HDFS, so a different approach is needed to restrict this info from being sent to HiveServer2 clients.

This feature was added in Hive 1.2.0 by HIVE-9350. You may need to use Ranger to achieve this functionality, which was added in RANGER-238. Both of these features are included in HDP 2.3.0+

1,418 Views
Announcements
What's New @ Cloudera
CDP Real time Monitoring for 7.1.9+ and 7.2.18+ with Clouder...
What's New @ Cloudera
Announcing Cloudera Streaming Analytics 1.17: Python UDFs, S...
Community Announcements
Content Update: Evolving Our Community Content for Better, A...
Community Announcements
Product Name Updates — Community Label Changes & Notificatio...
What's New @ Cloudera
Announcing Cloudera Data Lineage for Trino
View More Announcements