Hello, Hue administrators,
The Apache Ranger™is a framework to enable, monitor and manage comprehensive data security across the Hadoop platform.
Hue integrates with Ranger since Hue4.6, on any secure cluster with Ranger installed, the user has to have proper permissions to operate on the data to avoid following permission warning.
Here let's show the detailed steps to grant permission for any new user through CM UI.
- On any CM managed cluster, you can navigate to Ranger service, note down the ‘Ranger Usersync’ host on “Instances” tab, then open ‘Ranger Admin Web UI’
open a terminal and ssh to your ranger usersync host which you noted down at Step 1;
ssh [email protected] useradd weixia passwd weixia
On Ranger admin webui page: https://weixia-1.domain.site:6182/index.html#!/policymanager/resource, click on “Edit” button besides the “Hadoop SQL”:
a. if you want to give new user permission on all databases, add your user on the existing policy: “all-database, table, column”
b. if you want to give new user only to specific database say ‘testdb’, you can create new policy as following, choose permission as you desired:
- Save the change.
Navigate to Hue WebUI, now your new user should be able to run any query on any entities as granted in the policy.
You can do the same for group permission as well.
Weixia Xu from the Hue Team