Cloudera Community

Support Questions

Find answers, ask questions, and share your expertise
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Advanced Search

How do I authorize users for access of Spark SQL Thrift Server?

Labels:
avatar
author-rank stellium
Explorer

Created ‎09-19-2017 11:16 AM

We have a Spark SQL Thrift Server running with Kerberos enabled. While Kerberos helps in authenticate users, I am not sure how I could authorize who could use what tables. We use "Ranger" and it has "hive" policies. I think this is more for "HS2" access. Does this also protect access via Spark-SQL Thrift server?

3,838 Views
0 Kudos
1 REPLY 1

avatar
author-rank shahrukh_khan author-rank
Contributor

Created ‎09-23-2017 09:07 PM

@Sarnath K, Do you mean Authentication or Authorization for Spark Thrift Server.

For Authentication you can Enable ACL's - http://spark.apache.org/docs/latest/security.html

Authorization for Spark can be done using

  • HDFS ACLs, which can also be managed using Ranger.
  • LLAP enabled Spark for Coloumn Security, in which reads from HDFS go directly through LLAP.

You can refer to the following KB Article - SPARKSQL, RANGER, AND LLAP VIA SPARK THRIFT SERVER FOR BI SCENARIOS TO PROVIDE ROW, COLUMN LEVEL SEC...

2,638 Views
0 Kudos
Announcements
What's New @ Cloudera
Cloudera Data Engineering 1.23: Access Spark from Your Favor...
What's New @ Cloudera
HBase REST server scaling support is Generally Available
What's New @ Cloudera
New CLI option in the update-database command
What's New @ Cloudera
New Action menu item in the Cloudera Operational Database UI
What's New @ Cloudera
Get the list of supported instance types in the Cloudera Ope...
View More Announcements