Stack Overflow
Stack Overflow

Questions tagged [apache-sentry]

Apache Sentry is a system for enforcing fine grained role based authorization to data and metadata stored on a Hadoop cluster.

Apache Sentry is a system for enforcing fine grained role based authorization to data and metadata stored on a Hadoop cluster.

Sentry currently integrates with the open source SQL query frameworks, Apache Hive and Apache Impala (incubating), and the open source search engine, Cloudera Search, and can also extend to other computing engines within the Hadoop ecosystem.

It was originally developed by Cloudera, but graduated in March 2016 to become a top-Level Apache project:

53 questions
0
votes
1 answer

Configure Sentry to show/hide different databases for different users

I have a cluster running with cdh-5.7.0 and configured the following setup hadoop with kerberos hive with LDAP authentication hive with sentry authorization (rules stored in JDBC derby) My goal is to restrict users to see which databases exist in…
mbauhardt
  • 23
  • 3
0
votes
1 answer

Solr document disappears when I update it

I am trying to update existing documents in a (Sentry-secured) Solr collection. The updates are accepted by Solr, but when I query, the document seems to have disappeared from the collection. What is going on? I am using Cloudera (CDH) 5.8.3, and…
DNA
  • 42,007
  • 12
  • 107
  • 146
0
votes
1 answer

can apache sentry support Row-Level access?

As we know ,apache sentry support column-level access,however,I got a case here: data of group A and Group B both in one hive table,so user of group A just need to query data of Group A,and has no privilege to query data of group B,so I wonder…
carmelo zhang
  • 37
  • 4
0
votes
1 answer

Sentry grant select on only one table in database

I am using Cloudera 5.4.2 with Sentry and am successfully granting access to roles on databases. My challenge now is to have a group that can read only one table from a database that has many other tables. I have not been able to grant select on a…
Dustin V
  • 176
  • 2
  • 8
0
votes
1 answer

Sentry privileges model: Can Sentry take a database privileges away from a server privileges?

Assume I have a user jack and a group datateam. The user jack belongs to group datateam. Use Sentry for authorization. create role admin; grant role admin to group datateam; grant all on server server1 to role admin; Now the role admin has the…
cdhit
  • 1,384
  • 1
  • 15
  • 38
0
votes
0 answers

Unable to evaluate brickhouse.udf.json.JsonSplitUDF

I have tried to create a json_split function(UDF) using brickhouse.udf.json.JsonSplitUDF which was successful at beeline. But when I am trying to use the same function in my queries, it fails due to "unable to evaluate…
jagath
  • 238
  • 1
  • 6
0
votes
2 answers

Apache sentry - Get sentry groups to which a given database/tables has been assigned to

I want get for a given database/table the list of groups this database/table has been granted access in sentry.
Manohar CS
  • 31
  • 8
0
votes
1 answer

Need of disabling HiveServer2 Impersonation for sentry

I have configured the Hive Authorization though Sentry and did all the needed changes. One of the change is to Disable HiveServer2 Impersonation by setting below property: hive.server2.enable.doAs to false This is mandatory requirement for Sentry…
Vikas Hardia
  • 2,635
  • 5
  • 34
  • 53
0
votes
0 answers

indexing and navigating in S3 metadata

I'm getting an important number of S3 CSV files, for each fo.csv S3 file there is a fo.metadata.txt file with interesting metadata describing csv columns and giving additional info. I'm looking for the best way to navigate in the metadata of all…
user3313834
  • 7,327
  • 12
  • 56
  • 99
0
votes
1 answer

Understanding sentry-provider.ini file syntax

sentry-provider.ini [groups] # Assigns each Hadoop group to its set of roles engineer = engineer_role ops = ops_role dev_ops = engineer_role, ops_role hbase_admin = hbase_admin_role [roles] # The following grants all access to source_code. #…
Amit Kumar
  • 2,685
  • 2
  • 37
  • 72
0
votes
2 answers

Config hive with sentry: NullPointerException privilegeObj is null for

I've followed the guide step by step. But error occured when I tried to grant privilege to the role: 0: jdbc:hive2://localhost:10000/> GRANT ALL ON SERVER server1 TO ROLE admin_role; Error: Error while compiling statement: FAILED:…
kiwi
  • 487
  • 1
  • 4
  • 16
0
votes
2 answers

Apache Sentry API for Policy Management

I am looking for way to define policy for Role pragmatically. Is there any API available for Sentry ? Either REST/JAVA ? Any documentation or link will be great help?
Shashi
  • 2,686
  • 7
  • 35
  • 67
0
votes
1 answer

Apache Sentry: SemanticException No valid privileges Required privileges for this query

I have unsecured cluster (CDH 5.4) and as I want to provide an access to data to more users, I would like to turn on the Sentry, so far without Kerberos (which comes after sucessful launch of Sentry). As some other people might need Impala at the…
Bechyňák Petr
  • 805
  • 9
  • 14
0
votes
1 answer

how to create ini file as HDFS on linux

I am new to linux. Cloudera documentation has mentioned creating sentry-provider.ini file on cloudera CHD 5.4 as HDFS file. I am not finding good article on how to create ini file on linux. I am trying to configure Apache Sentry on cloudera setup…
107
  • 552
  • 3
  • 26
0
votes
1 answer

Spark + Sentry + Kerberos: org.apache.hadoop.security.UserGroupInformation.doAs()

Getting following error stack: The Spark session could not be created in the cluster: at org.apache.hadoop.security.UserGroupInformation.doAs(UserGroupInformation.java:1671) at…
Tagar
  • 13,911
  • 6
  • 95
  • 110
1 2
3
4