In addition to using job's ACLs you could have more brutal schema. Track
all requests to kill the jobs, and if any request is coming from the user
who should't be trying to kill this particular job, then ssh from the
script to his client machine and forcibly reboot it :)
2013/7/30 Edward
I'm trying to access hiveserver2 with kerberos enabled (hive 10, cdh 4.2.1,
local metastore) from the beeline tool, but seeing some unexpected (to me)
behavior:
- when entering the command in Beeline like !connect
jdbc:hive2://host:port/default;hive principal I'm asked to enter
username and
Can I also get the edit privilege for wiki please?
I'd like to add some details about LDAP authentication..
Mikhail
2013/8/21 Stephen Sprague sprag...@gmail.com
Sanjay gets some love after all! :)
On Tue, Aug 20, 2013 at 4:00 PM, Sanjay Subramanian
sanjay.subraman...@wizecommerce.com
I see the same behavior and here's the reason.
LdapAuthenticationProviderImpl - that the one responsible for LDAP
authentication in Hive. Look at this class. It has snippet (CDH 4.2.1, hive
0.10):
// setup the security principal
String bindDN;
if (baseDN != null) {
bindDN = uid= +
To validate what I said, run hiveserver2 in debug mode, put breakpoint in
this class, authenticate method, and see if the exception is being thrown.
2013/8/23 Mikhail Antonov olorinb...@gmail.com
I see the same behavior and here's the reason.
LdapAuthenticationProviderImpl - that the one
for getting back.
That means I cannot use this using beeline unless I change the code and
build hive again ?
Thanks
sanjay
From: Mikhail Antonov olorinb...@gmail.com
Reply-To: user@hive.apache.org user@hive.apache.org
Date: Friday, August 23, 2013 6:17 PM
To: user@hive.apache.org
Looks like you have StorageDelegationAuthorizationProvider enabled in
hive-site.xml (like below), but hcatalog isn't installed somehow?
property
namehive.security.authorization.manager/name
valueorg.apache.hcatalog.security.StorageDelegationAuthorizationProvider/value
descriptionthe hive
installation steps.
Thanks
On Oct 5, 2013 12:07 AM, Mikhail Antonov olorinb...@gmail.com wrote:
Looks like you have StorageDelegationAuthorizationProvider enabled in
hive-site.xml (like below), but hcatalog isn't installed somehow?
property
namehive.security.authorization.manager/name
, Lefty Leverenz
leftylever...@gmail.comwrote:
Do you have any suggestions for improving the Hive wiki instructions?
-- Lefty
On Fri, Oct 4, 2013 at 7:30 PM, Baahu bahub...@gmail.com wrote:
Apache hive.
On Oct 5, 2013 1:06 AM, Mikhail Antonov olorinb...@gmail.com wrote:
Are you using
suggestions for improving the Hive wiki instructions?
-- Lefty
On Fri, Oct 4, 2013 at 7:30 PM, Baahu bahub...@gmail.com wrote:
Apache hive.
On Oct 5, 2013 1:06 AM, Mikhail Antonov olorinb...@gmail.com wrote:
Are you using apache hive or one from cloudera/Horton works?
On Oct 4, 2013, at 11
Could you please also add me? olorinb...@gmail.com
I wanted to add details about LDAP integration
-Mikhail
2013/10/28, Ashutosh Chauhan hashut...@apache.org:
Hi Eric,
Added you as a contributor to Hive wiki.
Thanks,
Ashutosh
On Mon, Oct 28, 2013 at 4:39 PM, Eric Hanson (SQL SERVER)
Did you try connecting from beeline console?
Also, that happens on the default database, what happens if you try to
create a new database?
-Mikhail
2013/11/13, david1990...@163.com david1990...@163.com:
Hive is configured with remote metastore and kerberos ,and it works fine .
But now ,I
Would help if you show logs/errors from the failing binding.
- do you use schema, when Hiveserver2 itself authenticates to Namenode via
kerberos, and end users authenticate via ldap with proxied kerberos tickets?
- How do you pass in username/password, could you post here relevant piece
of
against a binding-required LDAP server?
On Fri, Dec 20, 2013 at 2:46 PM, Mikhail Antonov olorinb...@gmail.comwrote:
Would help if you show logs/errors from the failing binding.
- do you use schema, when Hiveserver2 itself authenticates to Namenode
via kerberos, and end users authenticate
The difference is that you need to pass in to LDAP username and password.
2013/12/20 Mikhail Antonov olorinb...@gmail.com
Could you elaborate what do you mean by authenticate against _anonymous_
LDAP server?
2013/12/20 Ron Echeverri recheve...@maprtech.com
I'll collect
15 matches
Mail list logo
