Configure Impala to Use Sentry Authorization With the Database Storage Model
As of Sentry 1.6, Sentry can be configured to use the Database storage model. Complete the following steps to configure Impala to use Sentry authentication when Sentry uses the DB storage model:
About this task
IMPORTANT This component is deprecated. Hewlett Packard
Enterprise recommends using an alternate product. For more information, see Discontinued Ecosystem Components.
Procedure
-
Set the following properties in env.sh
(/opt/mapr/impala/impala-<version>/conf/env.sh):
IMPALA_SERVER_ARGS=" -server_name=HS2 -sentry_config=<SENTRY-HOME>/conf/sentry-site.xml IMPALA_CATALOG_ARGS=" -sentry_config=<SENTRY-HOME>/conf/sentry-site.xml IMPALA_STATE_STORE_ARGS=" -sentry_config=<SENTRY-HOME>/conf/sentry-site.xml
NOTE SENTRY-HOME is a variable used in place of the ecosystem component home directory. Typically, the default ecosystem component home directory for a component is/opt/mapr/<component>/<component>-<version>/
. -
Run the following commands to restart Impala:
sudo -u mapr maprcli node services -name impalaserver -action restart -nodes <nodename>
sudo -u mapr maprcli node services -name impalastore -action restart -nodes <nodename>
sudo -u mapr maprcli node services -name impalacatalog -action restart -nodes <nodename>
-
When Impala is running, you can issue the following command to start the
impala-shell as a particular user:
impala-shell -u <user_name>