Cloudera Community

Archives of Support Questions (Read Only)

This is an archived board for historical reference. Information and links may no longer be available or relevant
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Advanced Search
Announcements
This board is archived and read-only for historical reference. To ask a new question, please post a new topic on the appropriate active board.
Solved Go to solution

hue beexwax privilege(hive security)

avatar
author-rank rube
Contributor

Created on ‎06-19-2014 07:40 PM - last edited on ‎04-21-2026 07:01 AM by Community Manager Community Manager

Is there a way to forbidden the user drop hive table,

If do not want the user have DDL privilege ,how to do that?

3,510 Views
0 Kudos
1 ACCEPTED SOLUTION

avatar
author-rank Romainr author-rank
Super Guru

Created ‎06-19-2014 10:46 PM

The recommended way to do this is to use Sentry:

http://sentry.incubator.apache.org/
http://www.cloudera.com/content/cloudera-content/cloudera-docs/CDH5/latest/CDH5-Installation-Guide/c...

Romain


View solution in original post

3,509 Views
0 Kudos
4 REPLIES 4

avatar
author-rank Romainr author-rank
Super Guru

Created ‎06-19-2014 10:46 PM

The recommended way to do this is to use Sentry:

http://sentry.incubator.apache.org/
http://www.cloudera.com/content/cloudera-content/cloudera-docs/CDH5/latest/CDH5-Installation-Guide/c...

Romain


3,510 Views
0 Kudos

avatar
author-rank rube
Contributor

Created ‎06-24-2014 03:15 AM

I do it with cm.

http://www.cloudera.com/content/cloudera-content/cloudera-docs/CM5/latest/Configuring-Hadoop-Securit...

3,506 Views
0 Kudos

avatar
author-rank Romainr author-rank
Super Guru

Created ‎06-24-2014 10:01 AM

The correct (but more complicated way) would be to use Sentry:
http://www.cloudera.com/content/cloudera-content/cloudera-docs/CDH4/4.5.0/CDH4-Security-Guide/cdh4sg...

The other alternative is to remove the metastore DDL permissions in the
groups of your users: https://www.dropbox.com/s/nbv0wwpybwlsm67/hue-ddl.png,
but this will not secure the SQL like DROP table

Romain

3,503 Views
0 Kudos

avatar
author-rank rube
Contributor

Created ‎06-24-2014 06:34 PM

Thank you very much.

It works with sentry.

3,500 Views
0 Kudos
Announcements
What's New @ Cloudera
Cloudera Real time Monitoring for 7.1.9+ and 7.2.18+ with Cl...
What's New @ Cloudera
Announcing Cloudera Streaming Analytics 1.17: Python UDFs, S...
Community Announcements
Content Update: Evolving Our Community Content for Better, A...
Community Announcements
Product Name Updates — Community Label Changes & Notificatio...
What's New @ Cloudera
Announcing Cloudera Data Lineage for Trino
View More Announcements