I just started using Apache Ranger 1.2.0 with Azure HDInsight Hadoop.
Then, I try using Ranger's permission control, but it doesn't work as I want.
I know the control works under this flow:https://docs.cloudera.com/HDPDocuments/HDP3/HDP-3.0.0/authorization-ranger/content/apache_ranger_acc... so that, the deny condition is prior to allow condition.
I made the policy which have two conditons; Allow Conditon is the group who includes me and Deny Conditon is just me.
And, only the polcy has the access to table A.
I guess the group user except me can access(SELECT) the table and I can't, but acutually both can.
Is there wrong point? my thought or settings?