This page explains how to configure Sentry in these sections:
Configuring Sentry and Hive for File-based Storage Mode
When Sentry operates in file-based storage mode, it works as a batch of java-libraries that are used by Hive. It does not run as a service and is not integrated with Warden or with the MapR Control System. Sentry only runs as a service when you choose the database storage model.
These instructions explain how to configure Hive to use Sentry in file-based storage mode.
hive-site.xmlfile (located at
/opt/mapr/hive/hive-<version>/conf) and set properties as shown:
sentry-site.xmlfile and set properties as shown:
Configuring Sentry and Impala for File-based Storage Mode
For Impala to work with Sentry, follow these steps:
env.shfile located at
/opt/mapr/impala/impala-<version>/conf/env.shand add these two lines after
<file-name>.iniis stored at MapR-FS, the URL should start with
Restart impalaserver, impalastore, and impalacatalog.
global-policy.ini file defines the
admin_role, which gives full access to the Hiveserver2 server for the
mapr user. The file is located in
/opt/mapr/sentry/sentry-<version>/conf in your local file system. You can relocate the file to MapR-FS if you prefer. By default, this file contains these sections:
You can also define separate policy files for a particular database, where you specify roles and privileges for that database. Database-specific roles and privileges are defined in a
[databases] section, as shown in these examples: