PAM authentication is an important feature available since Hive 0.13. But Hive blog <https://cwiki.apache.org/confluence/display/Hive/Setting+Up+HiveServer2#SettingUpHiveServer2-PluggableAuthenticationModules(PAM)> gives the following warnings:
*JPAM <http://jpam.sourceforge.net/> library that is used to provide the > PAM authentication mode can cause HiveServer2 to go down if a user's > password has expired. This happens because of segfault/core dumps from > native code invoked by JPAM. Some users have also reported crashes during > logins in other cases as well. Use of LDAP or KERBEROS is recommended.* JPAM also requires user to install a native library. Furthermore, JPAM library seems not to have been updated since 2007. My questions are 1. Is the above warning still valid on newer OS? Is Hive PAM authentication production ready? 2. Other projects (e.g. Ambari/Ranger/Knox) use a newer library libpam4j which doesn't require installation of native library. Can Hive switch to use libpam4j instead of JPAM? Thanks, Richard
