Support Questions
Find answers, ask questions, and share your expertise

User should see only his/his group tables and HDFS directories( level 1 or root directory)

Hi,

We are running HDP2.3.4 cluster at Enterprise Level and around 5 BI Business Units are connecting to the Hadoop cluster.

They are creating tables and importing files using Hive Views & HDFS Files View but here every BI Business unit is viewing others tables( I mean only table names and not the data) in hive views and data directories on HDFS as well(level 1 directory or root directory)

Based on Linux permission & Linux group policies we implemented access control mechanism on table’s data & sub directories but we are not able to hide table names and parent directories(level 1 directory) in HDFS.

Suggest me if we have right solution?

1 ACCEPTED SOLUTION

Accepted Solutions

Re: User should see only his/his group tables and HDFS directories( level 1 or root directory)

Database and table metadata is stored in the Hive Metastore, not in HDFS, so a different approach is needed to restrict this info from being sent to HiveServer2 clients.

This feature was added in Hive 1.2.0 by HIVE-9350. You may need to use Ranger to achieve this functionality, which was added in RANGER-238. Both of these features are included in HDP 2.3.0+

View solution in original post

1 REPLY 1

Re: User should see only his/his group tables and HDFS directories( level 1 or root directory)

Database and table metadata is stored in the Hive Metastore, not in HDFS, so a different approach is needed to restrict this info from being sent to HiveServer2 clients.

This feature was added in Hive 1.2.0 by HIVE-9350. You may need to use Ranger to achieve this functionality, which was added in RANGER-238. Both of these features are included in HDP 2.3.0+

View solution in original post