In addition to using job's ACLs you could have more brutal schema. Track
all requests to kill the jobs, and if any request is coming from the user
who should't be trying to kill this particular job, then ssh from the
script to his client machine and forcibly reboot it :)
2013/7/30 Edward Capriolo
I'm trying to access hiveserver2 with kerberos enabled (hive 10, cdh 4.2.1,
local metastore) from the beeline tool, but seeing some unexpected (to me)
behavior:
- when entering the command in Beeline like "!connect
jdbc:hive2://host:port/default;" I'm asked to enter
username and password, but wha
Can I also get the edit privilege for wiki please?
I'd like to add some details about LDAP authentication..
Mikhail
2013/8/21 Stephen Sprague
> Sanjay gets some love after all! :)
>
>
> On Tue, Aug 20, 2013 at 4:00 PM, Sanjay Subramanian <
> sanjay.subraman...@wizecommerce.com> wrote:
>
>> Th
mantonov
2013/8/21 Ashutosh Chauhan
> Hey Mikhail,
>
> Sure. Whats ur cwiki id?
>
> Thanks,
> Ashutosh
>
>
> On Wed, Aug 21, 2013 at 1:58 PM, Mikhail Antonov wrote:
>
>> Can I also get the edit privilege for wiki please?
>>
>> I'
I see the same behavior and here's the reason.
LdapAuthenticationProviderImpl - that the one responsible for LDAP
authentication in Hive. Look at this class. It has snippet (CDH 4.2.1, hive
0.10):
// setup the security principal
String bindDN;
if (baseDN != null) {
bindDN = "uid="
To validate what I said, run hiveserver2 in debug mode, put breakpoint in
this class, authenticate method, and see if the exception is being thrown.
2013/8/23 Mikhail Antonov
> I see the same behavior and here's the reason.
>
> LdapAuthenticationProviderImpl - that the one respon
ting back.
>
> That means I cannot use this using beeline unless I change the code and
> build hive again ?
>
> Thanks
>
> sanjay
>
> From: Mikhail Antonov
> Reply-To: "user@hive.apache.org"
> Date: Friday, August 23, 2013 6:17 PM
> To: "us
I don't know what distribution are you using, but this might be helpful:
http://www.cloudera.com/content/cloudera-content/cloudera-docs/CDH4/4.2.0/CDH4-Installation-Guide/cdh4ig_topic_18_5.html
-Mikhail Antonov
2013/10/1 Xiu Guo
> Hi,
>
> I understand in Hive 0.11 the defau
Looks like you have StorageDelegationAuthorizationProvider enabled in
hive-site.xml (like below), but hcatalog isn't installed somehow?
hive.security.authorization.manager
org.apache.hcatalog.security.StorageDelegationAuthorizationProvider
the hive client authorization manager class name.
installation steps.
>
> Thanks
>
>> On Oct 5, 2013 12:07 AM, "Mikhail Antonov" wrote:
>> Looks like you have StorageDelegationAuthorizationProvider enabled in
>> hive-site.xml (like below), but hcatalog isn't ins
gt;> On Fri, Oct 4, 2013 at 7:30 PM, Baahu wrote:
>>>
>>>> Apache hive.
>>>> On Oct 5, 2013 1:06 AM, "Mikhail Antonov" wrote:
>>>>
>>>>> Are you using apache hive or one from cloudera/Horton works?
>>>&
I see instructions to build from source code just after "Installing Hive
>>> from a Stable Release" section, which is kinda confusing.I bump in to the
>>> error mentioned above while I execute the instructions in "Running Hive"
>>> section.
>>&g
Could you please also add me? olorinb...@gmail.com
I wanted to add details about LDAP integration
-Mikhail
2013/10/28, Ashutosh Chauhan :
> Hi Eric,
>
> Added you as a contributor to Hive wiki.
>
> Thanks,
> Ashutosh
>
>
> On Mon, Oct 28, 2013 at 4:39 PM, Eric Hanson (SQL SERVER) <
> eric.n.han.
Did you try connecting from beeline console?
Also, that happens on the default database, what happens if you try to
create a new database?
-Mikhail
2013/11/13, david1990...@163.com :
> Hive is configured with remote metastore and kerberos ,and it works fine .
>
> But now ,I want to config hive a
Would help if you show logs/errors from the failing binding.
- do you use schema, when Hiveserver2 itself authenticates to Namenode via
kerberos, and end users authenticate via ldap with proxied kerberos tickets?
- How do you pass in username/password, could you post here relevant piece
of hive-
o work against a binding-required LDAP server?
>
>
> On Fri, Dec 20, 2013 at 2:46 PM, Mikhail Antonov wrote:
>
>> Would help if you show logs/errors from the failing binding.
>>
>> - do you use schema, when Hiveserver2 itself authenticates to Namenode
>> vi
The difference is that you need to pass in to LDAP username and password.
2013/12/20 Mikhail Antonov
> Could you elaborate what do you mean by "authenticate against _anonymous_
> LDAP server"?
>
>
> 2013/12/20 Ron Echeverri
>
>> I'll collect this, b
17 matches
Mail list logo
