Cloudera Community

Support Questions

Find answers, ask questions, and share your expertise
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Advanced Search
Solved Go to solution

Permission denied: user=falcon, access=EXECUTE, inode="/apps/falcon/extensions":hdfs:hdfs:drwx-----

Labels:
avatar
author-rank jagdish
Expert Contributor

Created ‎02-03-2017 08:39 PM

ERROR from falcon application log

=================

After installing falcon I see SERVICE UNAVAILABLE ERROR on falcon UI . On restart of falcon service see the below error which points hdfs:hdfs is user & group ownership and falcon cannot execute .

017-02-03 20:10:46,874 INFO  ipc.Server (Server.java:logException(2394)) - IPC Server handler 105 on 8020, call org.apache.hadoop.hdfs.protocol.ClientProtocol.getFileInfo from 192.
168.1.95:43132 Call#0 Retry#0: org.apache.hadoop.security.AccessControlException: Permission denied: user=falcon, access=EXECUTE, inode="/apps/falcon/extensions":hdfs:hdfs:drwx-----

Below is the output of hadoop fs -ls ...

[root@hdpkdc ~]# hadoop fs -ls /apps/falcon
Found 1 items
drwxr-xr-x - falcon users 0 2017-02-02 20:53 /apps/falcon/extensions
[root@hdpkdc ~]# hadoop fs -ls /apps/falcon/extensions
Found 4 items
drwxr-xr-x - falcon users 0 2017-02-02 20:53 /apps/falcon/extensions/hdfs-mirroring
drwxr-xr-x - falcon users 0 2017-02-02 20:53 /apps/falcon/extensions/hdfs-snapshot-mirroring
drwxr-xr-x - falcon users 0 2017-02-02 20:53 /apps/falcon/extensions/hive-mirroring
drwxrwx--- - falcon users 0 2017-02-02 20:53 /apps/falcon/extensions/mirroring

Thanks,

Jagdish

8,816 Views
0 Kudos
1 ACCEPTED SOLUTION

avatar
author-rank jagdish
Expert Contributor

Created ‎02-07-2017 01:06 PM

@Ajay @prsingh

Ranger HDFS policy were configured was but since Hadoop ACL's are in place it should have let falcon user in .

As a workaround we tried a different path and that worked . Unable to replicate the same again . I guess we can close this ticket for now .

Thanks ...

View solution in original post

5,596 Views
0 Kudos
3 REPLIES 3

avatar
author-rank ajay_kumar
Expert Contributor

Created ‎02-03-2017 09:30 PM

@Jagdish Saripella

Are you using ranger for HDFS ACL? If yes configure ranger policy accordingly.

5,596 Views
0 Kudos

avatar
author-rank prsingh1 author-rank
Rising Star

Created ‎02-07-2017 09:55 AM

@Jagdish Saripella Please check permissions/ownership for /apps/falcon. It should set as below.

[root@HOST]# hdfs dfs -ls -d /apps/falcon

drwxrwxrwx - falcon hdfs 0 2016-12-08 11:48 /apps/falcon

Also, check corresponding policies in ranger.

5,596 Views
0 Kudos

avatar
author-rank jagdish
Expert Contributor

Created ‎02-07-2017 01:06 PM

@Ajay @prsingh

Ranger HDFS policy were configured was but since Hadoop ACL's are in place it should have let falcon user in .

As a workaround we tried a different path and that worked . Unable to replicate the same again . I guess we can close this ticket for now .

Thanks ...

5,597 Views
0 Kudos
Announcements
What's New @ Cloudera
Cloudera Data Engineering 1.23: Access Spark from Your Favor...
What's New @ Cloudera
HBase REST server scaling support is Generally Available
What's New @ Cloudera
New CLI option in the update-database command
What's New @ Cloudera
New Action menu item in the Cloudera Operational Database UI
What's New @ Cloudera
Get the list of supported instance types in the Cloudera Ope...
View More Announcements