You are viewing a plain text version of this content. The canonical link for it is here.

Posted to user@hadoop.apache.org by igyu <ig...@21cn.com> on 2021/09/15 01:33:54 UTC

about Permission perblom

my hadoop cluster enable kerbreos with ldap

I use kinit swith to jztwk and mkdir /user/jztwk
than I use kinit switch to testldap and delete /user/jztwk,that is successful
but I think that I should get a error

drwxr-xr-x   - jztwk     supergroup          0 2021-09-14 17:46 /user/jztwk
drwxr-xr-x   - zeppelin  supergroup          0 2021-04-12 16:33 /user/zeppelin
drwxr-xr-x   - read_hive read_hive           0 2021-05-19 15:20 /user/read_hive

I also to delete /user/zeppelin and /user/read_hive I get a error

jzyc@bigdser4:/hadoop/app$ hadoop fs -rm -r /user/zeppelin
rm: Failed to move to trash: hdfs://nameservice1/user/zeppelin: Permission denied: user=testldap, access=ALL, inode="/user/zeppelin":zeppelin:supergroup:drwxr-xr-x
jzyc@bigdser4:/hadoop/app$ hadoop fs -rm -r /user/read_hive
rm: Failed to move to trash: hdfs://nameservice1/user/read_hive: Permission denied: user=testldap, access=ALL, inode="/user/read_hive":read_hive:read_hive:drwxr-xr-x

jzyc@bigdser4:/hadoop/app$ id testldap
uid=90001(testldap) gid=90001(testldap) groups=90001(testldap)
jzyc@bigdser4:/hadoop/app$ hdfs groups testldap
testldap : testldap

testldap is not superuser, jztwk is superuser.

so I'm confused



igyu