Cloudera Community

Support Questions

Find answers, ask questions, and share your expertise
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Advanced Search
Solved Go to solution

we are using hdp 2.1.5 and I have create user in linux and create a directory in hdfs , i want to give read access to hive data base.we are using postgresql..how i can restrict this use to hive db. any one give the solution how can i set permission

Labels:
avatar
author-rank gsr_5001
New Contributor

Created ‎05-31-2016 03:19 PM

 
1,238 Views
0 Kudos
1 ACCEPTED SOLUTION

avatar
author-rank ravi1 author-rank
Guru

Created ‎05-31-2016 03:29 PM

Are you using Hive CLI or Beeline/JDBC?

1. If you are using Hive CLI, then you need to control permissions on the HDFS. If you have 750 on the data in HDFS, and the user is part of the group, then the user will have only read only access. You can also user ACLs which are part of HDP 2.1.5. You can take a look at using ACLs here

2. If you are using Beeline, and set hive.server2.enable.doAs = true, then what you did on step 1, should be enough. If it is false and you are not using Storage Based authorization, then you will need to set permissions like in SQL with grant.

View solution in original post

1,149 Views
0 Kudos
3 REPLIES 3

avatar
author-rank divakarreddy_a
Guru

Created ‎05-31-2016 03:26 PM

@sankar rao

Go to /apps/hive/warehouse/ directrory on HDFS and change the user/group permissions as per your requirement.

drwxr-x--- - root hdfs 0 2015-11-19 17:30 /apps/hive/warehouse/default.db

1,149 Views
0 Kudos

avatar
author-rank ravi1 author-rank
Guru

Created ‎05-31-2016 03:29 PM

Are you using Hive CLI or Beeline/JDBC?

1. If you are using Hive CLI, then you need to control permissions on the HDFS. If you have 750 on the data in HDFS, and the user is part of the group, then the user will have only read only access. You can also user ACLs which are part of HDP 2.1.5. You can take a look at using ACLs here

2. If you are using Beeline, and set hive.server2.enable.doAs = true, then what you did on step 1, should be enough. If it is false and you are not using Storage Based authorization, then you will need to set permissions like in SQL with grant.

1,150 Views
0 Kudos

avatar
author-rank quadoss author-rank
Expert Contributor

Created ‎05-31-2016 08:38 PM

@sankar rao

You may want to visit these links as they are documented about the use of different Authorizations.

Hive Authorization

Storage Based Authorization in the Metastore Server

1,149 Views
0 Kudos
Announcements
What's New @ Cloudera
Cloudera Data Engineering 1.23: Access Spark from Your Favor...
What's New @ Cloudera
HBase REST server scaling support is Generally Available
What's New @ Cloudera
New CLI option in the update-database command
What's New @ Cloudera
New Action menu item in the Cloudera Operational Database UI
What's New @ Cloudera
Get the list of supported instance types in the Cloudera Ope...
View More Announcements