So I've enabled cell level security. Having an issue with spaces in groups retrieved from LDAP. In our Cloudera 6.2.1 cluster the LDAP for HDFS is configured to retrieve the groups from our LDAP server. That works fine.
But when I run hbase shell (kerberized with my kerberos ticket) any groups with spaces in the 'cn' are split into separate groups when I run the hbase shell 'whoami' command. For example if my LDAP group is called 'my cool group' in hbase shell whoami it shows 3 separate groups... 'my' 'cool' and 'group'. Unfortunately I can't change the group name to remove the spaces in LDAP. Therefore if I created an hbase cell visibility set to a label that maps to this LDAP group I can't retrieve the cell.