Cloudera Community

Support Questions

Find answers, ask questions, and share your expertise
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Advanced Search
Solved Go to solution

Hi i am new to hadoop admin, i want to remove write access to all databases and file systems in production cluster and we are using hdp 2.1.5. can any one help me how to remove write access,which directory i should modified

Labels:
avatar
author-rank g_rao9704
Expert Contributor

Created ‎06-06-2016 10:20 AM

 
1,649 Views
0 Kudos
1 ACCEPTED SOLUTION

avatar
author-rank tsaito
Expert Contributor

Created ‎06-06-2016 04:46 PM

Hi Sankar,

Are you using HDP cluster? If so, you can take an advantage of Ranger, which allow you to grant different permission to different users. You can lean more about Ranger via http://hortonworks.com/apache/ranger/

View solution in original post

1,561 Views
0 Kudos
5 REPLIES 5

avatar
author-rank tsaito
Expert Contributor

Created ‎06-06-2016 04:46 PM

Hi Sankar,

Are you using HDP cluster? If so, you can take an advantage of Ranger, which allow you to grant different permission to different users. You can lean more about Ranger via http://hortonworks.com/apache/ranger/

1,562 Views
0 Kudos

avatar
author-rank g_rao9704
Expert Contributor

Created ‎06-06-2016 04:53 PM

we dont have ranger..we are using HDP 2.1.5 , I think Ranger is available on 2.3 onwords. any other posibilities

1,561 Views
0 Kudos

avatar
author-rank tsaito
Expert Contributor

Created ‎06-07-2016 04:38 AM

You can use HDFS ACLS:

http://hortonworks.com/hadoop-tutorial/fine-grained-permissions-hdfs-files-hadoop-using-hdfs-acls/

And if you are using Hive, you can use storage based authorization as hive.security.authorization.manager in hive-site.xml, which uses HDFS ACL as permission to hive tables/databases.

1,561 Views
0 Kudos

avatar
author-rank divakarreddy_a
Guru

Created ‎06-07-2016 04:55 AM

@sankar rao

In simple solution you can try this as well.

hadoop fs -chmode -R 755 /apps/hive/warehouse/

Here DB owner is going to get read,write and execute, Group & others are going to get read and execute only.

you can explore Ranger and ACL functionality as well for implementing different level of access for users.

1,561 Views
0 Kudos

avatar
author-rank g_rao9704
Expert Contributor

Created ‎06-08-2016 11:22 AM

when i enter hadoop fs -ls /apps output is like below

drwxr-xr-x hdfs hdfs /apps/hive this means no write access for other ?please suggest me

1,561 Views
0 Kudos
Announcements
What's New @ Cloudera
Cloudera Data Engineering 1.23: Access Spark from Your Favor...
What's New @ Cloudera
HBase REST server scaling support is Generally Available
What's New @ Cloudera
New CLI option in the update-database command
What's New @ Cloudera
New Action menu item in the Cloudera Operational Database UI
What's New @ Cloudera
Get the list of supported instance types in the Cloudera Ope...
View More Announcements