05-06-2016 03:28 PM
Why does Hue run Impala query as 'hue/master1@MY-REALM' instead my username 'ben'?
I get this error (even i'm logged-in as 'ben' user)
Your query has the following error(s):
Request from user 'hue/master1@MY-REALM' with requested pool 'it' denied access to assigned pool 'root.it'
Previous to Cloudera 5.7 i think Cloudera had llama service and ran Impala query as 'llama' user. Now with Cloudera 5.7 I could have Impala without llama and have it's own Dynamic Resource Management. but problem is Hue runs query as hue/master1... user instead of my username.
Similar thing happens to Hive. Hive runs hive query as 'hive' user instead of my username. I found it pretty annoying..
Does anyone has better idea to this?
05-10-2016 08:01 AM
I added this configuration to Hue Server
Now i get this error
User 'hue/master1@MYREALM.COM' is not authorized to delegate to 'ben'. User delegation is disabled.
05-16-2016 09:17 AM
I have had authorized_proxy_user_config=hue=* configuration on CM, but for some reason it wasn't being populated on impalad configuration.
after reading the post you provided me, instead of manually adding it to "advanced snippet", I enabled Sentry Authorization on Impala. Now the configuration appears on the impalad, and impersonation works fine.
Thank you for your help Romain