We are using Cloudera 6.2.1 and enabling row and cell level ACLs on our Hbase tables.  After turning on the Hbase authorization toggle, in some environments, everything works perfectly.  We can add new labels and auths from Hbase shell.   In a few environments when trying to call the 'add_labels' command in Hbase shell it complains that 'Table hbase:labels does not exist'.  To fix it i ran the following command.   create 'hbase:labels','f'   Then I was able to call the add_labels command no problem.  I was just curious what actually creates this table and was trying to understand why in some environments it wasn't created.   Richard ... View more

So we're running Cloudera 6.2.1 which has Hbase 2.1.2  We'd like to provide row and cell level security.   Looking at this guide... https://docs.cloudera.com/documentation/enterprise/6/6.2/topics/admin_hbase_security.html#id_v2w_bv3_tw   ...I have to set a brunch of properties.   hbase.security.exec.permission.checks=true hbase.security.access.early_out=false hfile.format.version=3   Also I need to toggle on the 'Enable Hbase authorization' flag.   I assume I also have to configure the (the VisibilityController and AccessController) coprocessors?  There is this vague statement in the document mentioned about. --- Optionally, search for and configure HBase Coprocessor Master Classes and HBase Coprocessor Region Classes. --- Also I see in Cloudera 6.2.1 manager Hbase configuration toggles for 'Enable Row level authorization' and 'Enable Cell ACLs'.  Do I need to toggle those on too?  There is no mention of these in the setup.   It's a bit confusing.   Richard     ... View more