Support Questions
Find answers, ask questions, and share your expertise
Alert: Welcome to the Unified Cloudera Community. Former HCC members be sure to read and learn how to activate your account here.

Who agreed with this topic

Error refreshing Sentry policy



Today, I am observing a strange problem;


Cluster: Enabled with Sentry authorization, Policy file is checked, the groups are defined properly as below, I am able to connect to impala, but not able to access the schema. I don't see any problem with the ini configurations but could not understand the root cause, unfortunately due to previliges issue I can't set DBUG for sentry. Can any one help?

configuration details:



now if i check db1.ini

entry is




xyz_role = server=server1->db=db1->table=*->action=select


while going through the logs of Catalog server I see the below errors, any idea why could it be so?


E1030 10:50:07.559773 5155] Error refreshing Sentry policy:


Java exception follows:


com.cloudera.impala.catalog.AuthorizationException: User 'impalauser' does not have privileges to execute: LIST_ROLES


at com.cloudera.impala.util.SentryPolicyService.listAllRoles(


at com.cloudera.impala.util.SentryProxy$


at java.util.concurrent.Executors$


at java.util.concurrent.FutureTask.runAndReset(


at java.util.concurrent.ScheduledThreadPoolExecutor$ScheduledFutureTask.access$301(


at java.util.concurrent.ScheduledThreadPoolExecutor$


at java.util.concurrent.ThreadPoolExecutor.runWorker(


at java.util.concurrent.ThreadPoolExecutor$




Who agreed with this topic