Versions Compared

Old Version 7

changes.mady.by.user Lefty Leverenz

Saved on

compared with

New Version 8

changes.mady.by.user Thejas Nair

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.
Comment: SASL QOP config

...

Code Block
$HIVE_HOME/bin/hive --service hiveserver2

Authentication/Security configuration

HiveServer2 support Anonymous (no auth), Kerberos, pass through LDAP and pluggable custom authentication.

...

Panel

fs.hdfs.impl.disable.cache - Disable hdfs filesystem cache, default false
fs.file.impl.disable.cache - Disable local filesystem cache, default false

Integrity/Confidentiality protection

Changes in HIVE-4911 which should be available in hive 0.12, enable integrity protection and confidentiality protection ( beyond just the default of authentication), for communication between hive jdbc driver and hive server2 . You can use SASL QOP property configure this.

  • This is only when kerberos is used for the HS2 client (jdbc/odbc application) authentication with HS2.
  • hive.server2.thrift.sasl.qop in hive site.xml has to be set to one of valid QOP values ('auth', 'auth-int' or 'auth-conf')
  • specify sasl.qop in hive connection string sessionconf part of your jdbc hive connection string. eg jdbc:hive://hostname/dbname;sasl.qop=auth-int