Support Questions
Find answers, ask questions, and share your expertise

hdfs user not able to create external table on S3

Hi,

We have hortonwork cluster with kerberos and sqlstdautherization. Both security work fine excepts for create table for other users except hive. hive and hdfs are part of admin users.

Hive user is able to create all kinds of table but hdfs user not. S3 policy is open for all users.

I am able to use hadoop command to see s3 bucket in hdfs user. I am able to create local/external table on hdfs user. but I am not able to create external table on S3 using hdfs user. I am getting below error.

Error: Error while compiling statement: FAILED: HiveAccessControlException Permission denied: Principal [name=hdfs, type=USER] does not have following privileges for operation CREATETABLE [[OBJECT OWNERSHIP] on Object [type=DFS_URI, name=s3a://bucket_name/user/hdfs/TEST]] (state=42000,code=40000)

2 REPLIES 2

I am able to create external table on s3 using hive. It is giving above issue only in Hiveserver2/beeline.

Hi @Alpesh Virani
Guess you're ranger installed as well, right? If so, try to add the hdfs user to the policy.
https://docs.hortonworks.com/HDPDocuments/HDP2/HDP-2.6.2/bk_security/content/hive_policy.html
Otherwise, take a look on this:
https://issues.apache.org/jira/browse/HIVE-12408

Hope this helps.