Cloudera Community

Support Questions

Find answers, ask questions, and share your expertise
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Advanced Search
Solved Go to solution

Question about beeline connection using spark-hive client

Labels:
avatar
author-rank ssanthosh author-rank
Rising Star

Created ‎06-28-2017 06:35 PM

Hi,

I have a cluster with ranger enabled and trying to connect to hive using hive-spark beeline

Command:

/usr/hdp/current/spark2-client/bin/beeline -n testuser1 -p testuser1 -u "jdbc:hive2://<host:<port>/;principal=hive/_HOST@EXAMPLE.COM"

Output:

Connecting to jdbc:hive2://<host>:<port>/;principal=hive/_HOST@EXAMPLE.COM
INFO Utils: Supplied authorities: <host>:<port>
INFO Utils: Resolved authority: <host>:<port>
WARN NativeCodeLoader: Unable to load native-hadoop library for your platform... using builtin-java classes where applicable
INFO HiveConnection: Will try to open client transport with JDBC Uri: jdbc:hive2://<host>:<port>/;principal=hive/_HOST@EXAMPLE.COM
Error: Error while compiling statement: FAILED: HiveAccessControlException Permission denied: user [testuser1] does not have [USE] privilege on [Unknown resource!!] (state=42000,code=40000)
Beeline version 1.2.1.spark2.hdp.1 by Apache Hive
0: jdbc:hive2://<host>- (closed)>

The same works fine for HSI client

/usr/hdp/current/hive-client/bin/beeline -n testuser1 -p testuser1 -u "jdbc:hive2://<host>:<port>;principal=hive/_HOST@EXAMPLE.COM"

Connecting to jdbc:hive2://<host>:<port>;principal=hive/_HOST@EXAMPLE.COM
Connected to: Apache Hive (version 2.1.0.2.6.1.0-111)
Driver: Hive JDBC (version 1.2.1000.2.6.1.0-111)
Transaction isolation: TRANSACTION_REPEATABLE_READ
Beeline version 1.2.1000.2.6.1.0-111 by Apache Hive
0: jdbc:hive2://<host>->

Could someone help with identifying the reason for failure for hive-spark beeline.

It says the user doesnot have use privilege on unknown resource.

Thanks

3,024 Views
1 ACCEPTED SOLUTION

avatar
author-rank skoneru
Contributor

Created ‎06-28-2017 06:38 PM

In case of spark-hive client, if no database is specified in the connection url, it uses default db and tries to use that, since there is no policy configured for default db it fails. So, create a Ranger policy for default db granting access, whereas in case of HSI client the connection doesn't use any database.

View solution in original post

2,361 Views
2 REPLIES 2

avatar
author-rank skoneru
Contributor

Created ‎06-28-2017 06:38 PM

In case of spark-hive client, if no database is specified in the connection url, it uses default db and tries to use that, since there is no policy configured for default db it fails. So, create a Ranger policy for default db granting access, whereas in case of HSI client the connection doesn't use any database.

2,362 Views

avatar
author-rank ssanthosh author-rank
Rising Star

Created ‎06-28-2017 06:45 PM

Thanks Surya. It worked.

2,361 Views
Announcements
What's New @ Cloudera
Cloudera Data Engineering 1.23: Access Spark from Your Favor...
What's New @ Cloudera
HBase REST server scaling support is Generally Available
What's New @ Cloudera
New CLI option in the update-database command
What's New @ Cloudera
New Action menu item in the Cloudera Operational Database UI
What's New @ Cloudera
Get the list of supported instance types in the Cloudera Ope...
View More Announcements