hadoop - Impala shell hangs when invoked for LDAP users -


i've installed cluster impala , sentry (cdh 5.2) on centos 6.5 using command line , have set openldap (without tls) well. both operating without issues independently.

to hadoop cluster configured openldap, i've created required ldap groups hadoop services have made required entries in core-site.xml , impala config file listing ldap uri etc mentioned documentation.

when invoke impala-shell ldap users using "impala-shell -l -u test1" test1 valid openldap user, asks password, supply. problem once done - hangs. there absolutely no response @ impala-shell , neither impala logs nor ldap logs reacord activity. tried capturing tcpdump on port 389 (where ldap runs), seems there no communication there impala there no packets exchanged @ all. in contrast, works when invoked without "-l" directive normal centos users. below impala config file:

**impala_catalog_service_host=master.server.com impala_state_store_host=master.server.com impala_state_store_port=24000 impala_backend_port=22000 impala_log_dir=/var/log/impala impala_catalog_args="  -log_dir=${impala_log_dir} -        sentry_config=/etc/hive/conf/sentry-site.xml  "** impala_state_store_args=" -log_dir=${impala_log_dir} -state_store_port=${impala_state_store_port}" impala_server_args="     -server_name = master.server.com \     -sentry_config=/etc/hive/conf/sentry-site.xml \     -authorization_policy_provider_class = org.apache.sentry.provider.file.localgroupresourceauthorizationprovider \     -authorization_policy_file = /user/hive/warehouse/impala-policy.ini \     -ldap_uri=ldap://slave.server.com:389 \     --enable_ldap_auth=true \     -log_dir=${impala_log_dir} \     -catalog_service_host=${impala_catalog_service_host} \     -state_store_port=${impala_state_store_port} \     -use_statestore \     -state_store_host=${impala_state_store_host} \     -be_port=${impala_backend_port}" enable_core_dumps=false # libhdfs_opts=-djava.library.path=/usr/lib/impala/lib # mysql_connector_jar=/usr/share/java/mysql-connector-java.jar # impala_bin=/usr/lib/impala/sbin # impala_home=/usr/lib/impala # hive_home=/usr/lib/hive # hbase_home=/usr/lib/hbase # impala_conf_dir=/etc/impala/conf # hadoop_conf_dir=/etc/impala/conf # hive_conf_dir=/etc/impala/conf # hbase_conf_dir=/etc/impala/conf

kindly me solve problem if you've experienced this. in advance.

i found root cause. reason impala daemon not picking ldap details impala config file (typically @ /etc/default/impala). don't know solved it, reinstalling impala made pick details required. once done, next challenge setting openldap groups in way impala expects, i.e., dn should contain uid , not cn , rest, using ldap_listdn parameter, provided complete dn getting registered in ldap logs. silly issue made me learn openldap in detail.


Comments

Post a Comment

Popular posts from this blog

toolbar - How to add link to user registration inside toobar in admin joomla 3 custom component -

im trying write component admin side , need add user creation. dont want duplicate existing codes add link. know how add task not simple link toolbar. thx help. if wanting button opens new user screen can try in component: $bar = jtoolbar::getinstance('toolbar'); $bar->appendbutton('link', 'users', 'new user','index.php?option=com_users&task=user.add'); you need add view.html.php file wherever you're creating toolbar. is need?
Read more

linux - disk space limitation when creating war file -

i have 1 gb disk space limitation hosting app , have used 700mb of it. however want create war file directory big (around 600mb) using command : jar -cvf root.war folderpath that's why encounter quota limitation , can't following. i'm looking way delete folder content when it's applying archive conserve disk space take note can't install zip tool in ssh shell ~ the code works on test directories, test first anyway, deletes files. it's not efficient. assumptions: 300mb free space, in destructively compress 600mb folderpath directory. none of files big -- if file in folderpath 300mb or larger, fail. notes: if ' $out ' file exists, nothing. first find pipes file list while , if ' $out ' doesn't exist in loop, create it, don't update -- if does exist, update it. each pass adds 1 more file, deletes unless file directory. after loop finishes delete empty directories too. unset u ; in=folderpath ; out=roo...
Read more

How to provide Authorization & Authentication using Asp.net, C#? -

Image
i have asp.net application in c#. i have provide page authorization specific user/usergroup. i have created 2 tables in database: 1) pagename 2)permissions[insert, update, view, delete] but i'm unable match tables , permissions assigning... can 1 please me, how created tables in database , how coding. please me. you can below explanation. configure access specific file , folder, set forms-based authentication. request page in application redirected logon.aspx automatically. in web.config file, type or paste following code. this code grants users access default1.aspx page , subdir1 folder . <configuration> <system.web> <authentication mode="forms" > <forms loginurl="login.aspx" name=".aspnetauth" protection="none" path="/" timeout="20" > </forms> </authentication> <!-- section denies access files in...
Read more