Created on 06-23-2017 12:22 PM - edited 09-16-2022 04:48 AM
We are now planning to enable sentry user authorization via Hue.
I am a bit confused an not sure, of this question.
What Ad groups are required with enabling sentry authorization.
I am trying to find of any document that gves those details on cloudera hadoop or google not finding.
I see a document on navigator where they mentioned of these below groups: are they really Ad groups? that needed to be created.
Here are the various groups, that are required: picked up from Cloudera Navigator document:
Auditor, Read-Only, Limited Operator, Operator, Configurator, Cluster Administrator ,BDR Administrator, Navigator Administrator, User Administrator, Key Administrator, Full Administrator
Thank you very much for the helpful info.
Created 06-24-2017 06:01 AM
Created 06-24-2017 07:24 AM
Created 06-26-2017 03:14 AM
Created 09-28-2018 07:35 AM
A new bee in this big data world ...need some help here !...Our corporate AD is being integrated with kerberized Hadoop cluster. Just wanted to validate if this is how the entire setup works.
1. I have my corporate AD Groups with their Uid and Groups attached
2. We define a cross realm trust between kerberos to Cop AD to enable Hadoop cluster to use corp AD groups
3. Create Role on Sentry and give priviledges on data objects
4. Attach the AD groups to the Sentry for atatching the users to privledges