Return-Path: 
 <user-return-20300-apmail-hadoop-user-archive=hadoop.apache.org@hadoop.apache.org>
X-Original-To: apmail-hadoop-user-archive@minotaur.apache.org
Delivered-To: apmail-hadoop-user-archive@minotaur.apache.org
Received: from mail.apache.org (hermes.apache.org [140.211.11.3])
	by minotaur.apache.org (Postfix) with SMTP id CE590186C2
	for <apmail-hadoop-user-archive@minotaur.apache.org>;
 Mon, 27 Jul 2015 04:10:40 +0000 (UTC)
Received: (qmail 8242 invoked by uid 500); 27 Jul 2015 04:10:32 -0000
Delivered-To: apmail-hadoop-user-archive@hadoop.apache.org
Received: (qmail 8150 invoked by uid 500); 27 Jul 2015 04:10:31 -0000
Mailing-List: contact user-help@hadoop.apache.org; run by ezmlm
Precedence: bulk
List-Help: <mailto:user-help@hadoop.apache.org>
List-Unsubscribe: <mailto:user-unsubscribe@hadoop.apache.org>
List-Post: <mailto:user@hadoop.apache.org>
List-Id: <user.hadoop.apache.org>
Reply-To: user@hadoop.apache.org
Delivered-To: mailing list user@hadoop.apache.org
Received: (qmail 8140 invoked by uid 99); 27 Jul 2015 04:10:31 -0000
Received: from Unknown (HELO spamd2-us-west.apache.org) (209.188.14.142)
    by apache.org (qpsmtpd/0.29) with ESMTP; Mon, 27 Jul 2015 04:10:31 +0000
Received: from localhost (localhost [127.0.0.1])
	by spamd2-us-west.apache.org (ASF Mail Server at spamd2-us-west.apache.org)
 with ESMTP id 3ED8C1A7928
	for <user@hadoop.apache.org>; Mon, 27 Jul 2015 04:10:31 +0000 (UTC)
X-Virus-Scanned: Debian amavisd-new at spamd2-us-west.apache.org
X-Spam-Flag: NO
X-Spam-Score: 3
X-Spam-Level: ***
X-Spam-Status: No, score=3 tagged_above=-999 required=6.31
	tests=[HTML_MESSAGE=3, SPF_PASS=-0.001, URIBL_BLOCKED=0.001]
	autolearn=disabled
Received: from mx1-us-east.apache.org ([10.40.0.8])
	by localhost (spamd2-us-west.apache.org [10.40.0.9]) (amavisd-new,
 port 10024)
	with ESMTP id ZWROVL6_b3bz for <user@hadoop.apache.org>;
	Mon, 27 Jul 2015 04:10:25 +0000 (UTC)
Received: from mail-ig0-f178.google.com (mail-ig0-f178.google.com
 [209.85.213.178])
	by mx1-us-east.apache.org (ASF Mail Server at mx1-us-east.apache.org) with
 ESMTPS id 04D3043CD4
	for <user@hadoop.apache.org>; Mon, 27 Jul 2015 04:10:25 +0000 (UTC)
Received: by igk11 with SMTP id 11so46003977igk.1
        for <user@hadoop.apache.org>; Sun, 26 Jul 2015 21:10:18 -0700 (PDT)
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20130820;
        h=x-gm-message-state:mime-version:references:in-reply-to:from:date
         :message-id:subject:to:content-type;
        bh=pjkz2bjwQnqMYEfdODfXyi39+rySeurKViSqWPGd7h8=;
        b=dFMLHqEbe9FPWeoB1FreWd7xyRlAWjPb+6PkFLACZBfHIXUTLOfGF6Pkzfio7G18kE
         E8ERzRWLRAF0TMiyUNTL5OwGnNm1FoyXgAk0rK+OzsFfv9YCBJIrWMgQd7KNQRrx6qwV
         0oayJnhOEqIVAlSk7VsDr692kDk0UF4M2agsoTnvAtFF5H1pCA/SwQeVpmSZenyzquDS
         c0S/Kwtpkyi7D7hvxQ/8iWndLBNjmhKgEyunyky3cCj7/wlqxlKLGFSFfdE0qXJuGVhG
         CpOmkFKTo4LikroWpYuPwv5rOv7zVfyk5V65stqb/oUzcdW2HETlKFPDZsELE8s4iABb
         +koQ==
X-Gm-Message-State: 
 ALoCoQkbAva4dN5Rmp6r8j6yl4Beu6NhsC25dShPmh2bIlMnWdxNYtDvkOnRU7hq4bRzF/3nvYqj
X-Received: by 10.107.10.96 with SMTP id u93mr37774391ioi.172.1437970218228;
 Sun, 26 Jul 2015 21:10:18 -0700 (PDT)
MIME-Version: 1.0
References: 
 <2125876D8382E34C9258B5B906E4EF5C32403B6D@chgpmaldag01wv.bcbsa.com>
 <CAOcnVr2p5EsDSpcJKigTYjjZUP7zJnEZoe3PAWNkzDqf6HMZSQ@mail.gmail.com>
 <2125876D8382E34C9258B5B906E4EF5C32403CA5@chgpmaldag01wv.bcbsa.com>
In-Reply-To: 
 <2125876D8382E34C9258B5B906E4EF5C32403CA5@chgpmaldag01wv.bcbsa.com>
From: Harsh J <harsh@cloudera.com>
Date: Mon, 27 Jul 2015 04:10:08 +0000
Message-ID: 
 <CAOcnVr1hn27B92EfLOzhyZ_DAD7b_rpEY0pX8amFaY3-544oXw@mail.gmail.com>
Subject: Re: dfs.permissions.superusergroup not working
To: user@hadoop.apache.org
Content-Type: multipart/alternative; boundary=001a113ee79c0e3d45051bd3885b

--001a113ee79c0e3d45051bd3885b
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: quoted-printable

That is correct, that specific property currently accepts only one value.

On Mon, Jul 27, 2015 at 8:33 AM Gangavarapu, Venkata <
Venkata.Gangavarapu@bcbsa.com> wrote:

>  Hey Harsh,
>
> Thanks for responding.
>
>
>
> Sorry about that. It was a typo.
>
>
>
> It was set as below
>
>
>
> <property>
>
>       <name> dfs.permissions.superusergroup </name>
>
>       <value>hdfs,hdpdadmngrp</value>
>
>     </property>
>
>
>
> I changed it as below and it is working
>
>
>
> <property>
>
>       <name> dfs.permissions.superusergroup </name>
>
>       <value>hdpdadmngrp</value>
>
>     </property>
>
>
>
> Looks like it accepts only one group as value. If that=E2=80=99s not true=
, please
> advise me whar would have went wrong
>
>
>
> Thanks,
>
> Venkat
>
>
>
>
>
> *From:* Harsh J [mailto:harsh@cloudera.com]
> *Sent:* Friday, July 24, 2015 9:26 PM
> *To:* user@hadoop.apache.org
> *Subject:* Re: dfs.permissions.superusergroup not working
>
>
>
> Is there a typo in your email, or did you set dfs.cluster.administrators
> instead of intending to set dfs.permissions.superusergroup?
>
>
>
> Also, are your id outputs from the NameNode machines? Cause by default th=
e
> group lookups happen local to your NameNode machine.
>
>
>
> On Sat, Jul 25, 2015 at 1:31 AM Gangavarapu, Venkata <
> Venkata.Gangavarapu@bcbsa.com> wrote:
>
>  Hi,
>
>
>
> I have add two groups under dfs.permissions.superusergroup property as
> below
>
> <property>
>
>       <name>dfs.cluster.administrators</name>
>
>       <value> hdfs,hdpdadmngrp</value>
>
>     </property>
>
>
>
> Restarted the HDFS after the change.
>
>
>
> But I am not able to run the below command
>
> hdfs dfsadmin =E2=80=93refreshNodes
>
>
>
>
>
> Error says I don=E2=80=99t have privilege to run the above command
>
>
>
> My cluster is kerberized. I have principal for my user id.
>
>
>
> Hdfs user:
>
> uid=3D504(hdfs) gid=3D501(hadoop) groups=3D501(hadoop),503(hdfs),506(hdpd=
admngrp)
>
>
>
> New admin user:
>
> uid=3D1007(gv07680) gid=3D506(hdpdadmngrp) groups=3D506(hdpdadmngrp)
>
>
>
> I am using hadoop-2.6.0
>
>
>
> Please help me with this.
>
>
>
> Thanks,
>
> Venkat
>
>

--001a113ee79c0e3d45051bd3885b
Content-Type: text/html; charset=UTF-8
Content-Transfer-Encoding: quoted-printable

<div dir=3D"ltr">That is correct, that specific property currently accepts =
only one value.</div><br><div class=3D"gmail_quote"><div dir=3D"ltr">On Mon=
, Jul 27, 2015 at 8:33 AM Gangavarapu, Venkata &lt;<a href=3D"mailto:Venkat=
a.Gangavarapu@bcbsa.com">Venkata.Gangavarapu@bcbsa.com</a>&gt; wrote:<br></=
div><blockquote class=3D"gmail_quote" style=3D"margin:0 0 0 .8ex;border-lef=
t:1px #ccc solid;padding-left:1ex">





<div lang=3D"EN-US" link=3D"blue" vlink=3D"purple">
<div>
<p class=3D"MsoNormal"><span style=3D"font-size:11.0pt;font-family:&quot;Ca=
libri&quot;,&quot;sans-serif&quot;;color:#1f497d">Hey Harsh,<u></u><u></u><=
/span></p>
<p class=3D"MsoNormal"><span style=3D"font-size:11.0pt;font-family:&quot;Ca=
libri&quot;,&quot;sans-serif&quot;;color:#1f497d">Thanks for responding.<u>=
</u><u></u></span></p>
<p class=3D"MsoNormal"><span style=3D"font-size:11.0pt;font-family:&quot;Ca=
libri&quot;,&quot;sans-serif&quot;;color:#1f497d"><u></u>=C2=A0<u></u></spa=
n></p>
<p class=3D"MsoNormal"><span style=3D"font-size:11.0pt;font-family:&quot;Ca=
libri&quot;,&quot;sans-serif&quot;;color:#1f497d">Sorry about that. It was =
a typo.<u></u><u></u></span></p>
<p class=3D"MsoNormal"><span style=3D"font-size:11.0pt;font-family:&quot;Ca=
libri&quot;,&quot;sans-serif&quot;;color:#1f497d"><u></u>=C2=A0<u></u></spa=
n></p>
<p class=3D"MsoNormal"><span style=3D"font-size:11.0pt;font-family:&quot;Ca=
libri&quot;,&quot;sans-serif&quot;;color:#1f497d">It was set as below<u></u=
><u></u></span></p>
<p class=3D"MsoNormal"><span style=3D"font-size:11.0pt;font-family:&quot;Ca=
libri&quot;,&quot;sans-serif&quot;;color:#1f497d"><u></u>=C2=A0<u></u></spa=
n></p>
<p class=3D"MsoNormal">&lt;property&gt;<u></u><u></u></p>
<p class=3D"MsoNormal">=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0 &lt;name&gt; dfs.perm=
issions.superusergroup &lt;/name&gt;<u></u><u></u></p>
<p class=3D"MsoNormal">=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0 &lt;value&gt;hdfs,hdp=
dadmngrp&lt;/value&gt;<u></u><u></u></p>
<p class=3D"MsoNormal">=C2=A0=C2=A0=C2=A0 &lt;/property&gt;<u></u><u></u></=
p>
<p class=3D"MsoNormal"><span style=3D"font-size:11.0pt;font-family:&quot;Ca=
libri&quot;,&quot;sans-serif&quot;;color:#1f497d"><u></u>=C2=A0<u></u></spa=
n></p>
<p class=3D"MsoNormal"><span style=3D"font-size:11.0pt;font-family:&quot;Ca=
libri&quot;,&quot;sans-serif&quot;;color:#1f497d">I changed it as below and=
 it is working<u></u><u></u></span></p>
<p class=3D"MsoNormal"><span style=3D"font-size:11.0pt;font-family:&quot;Ca=
libri&quot;,&quot;sans-serif&quot;;color:#1f497d"><u></u>=C2=A0<u></u></spa=
n></p>
<p class=3D"MsoNormal">&lt;property&gt;<u></u><u></u></p>
<p class=3D"MsoNormal">=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0 &lt;name&gt; dfs.perm=
issions.superusergroup &lt;/name&gt;<u></u><u></u></p>
<p class=3D"MsoNormal">=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0 &lt;value&gt;hdpdadmn=
grp&lt;/value&gt;<u></u><u></u></p>
<p class=3D"MsoNormal">=C2=A0=C2=A0=C2=A0 &lt;/property&gt;<u></u><u></u></=
p>
<p class=3D"MsoNormal"><span style=3D"font-size:11.0pt;font-family:&quot;Ca=
libri&quot;,&quot;sans-serif&quot;;color:#1f497d"><u></u>=C2=A0<u></u></spa=
n></p>
<p class=3D"MsoNormal"><span style=3D"font-size:11.0pt;font-family:&quot;Ca=
libri&quot;,&quot;sans-serif&quot;;color:#1f497d">Looks like it accepts onl=
y one group as value. If that=E2=80=99s not true, please advise me whar wou=
ld have went wrong<u></u><u></u></span></p>
<p class=3D"MsoNormal"><span style=3D"font-size:11.0pt;font-family:&quot;Ca=
libri&quot;,&quot;sans-serif&quot;;color:#1f497d"><u></u>=C2=A0<u></u></spa=
n></p>
<p class=3D"MsoNormal"><span style=3D"font-size:11.0pt;font-family:&quot;Ca=
libri&quot;,&quot;sans-serif&quot;;color:#1f497d">Thanks,<u></u><u></u></sp=
an></p>
<p class=3D"MsoNormal"><span style=3D"font-size:11.0pt;font-family:&quot;Ca=
libri&quot;,&quot;sans-serif&quot;;color:#1f497d">Venkat<u></u><u></u></spa=
n></p>
<p class=3D"MsoNormal"><span style=3D"font-size:11.0pt;font-family:&quot;Ca=
libri&quot;,&quot;sans-serif&quot;;color:#1f497d"><u></u>=C2=A0<u></u></spa=
n></p>
<p class=3D"MsoNormal"><span style=3D"font-size:11.0pt;font-family:&quot;Ca=
libri&quot;,&quot;sans-serif&quot;;color:#1f497d"><u></u>=C2=A0<u></u></spa=
n></p>
<p class=3D"MsoNormal"><b><span style=3D"font-size:10.0pt;font-family:&quot=
;Tahoma&quot;,&quot;sans-serif&quot;">From:</span></b><span style=3D"font-s=
ize:10.0pt;font-family:&quot;Tahoma&quot;,&quot;sans-serif&quot;"> Harsh J =
[mailto:<a href=3D"mailto:harsh@cloudera.com" target=3D"_blank">harsh@cloud=
era.com</a>]
<br>
<b>Sent:</b> Friday, July 24, 2015 9:26 PM<br>
<b>To:</b> <a href=3D"mailto:user@hadoop.apache.org" target=3D"_blank">user=
@hadoop.apache.org</a><br>
<b>Subject:</b> Re: dfs.permissions.superusergroup not working<u></u><u></u=
></span></p></div></div><div lang=3D"EN-US" link=3D"blue" vlink=3D"purple">=
<div>
<p class=3D"MsoNormal"><u></u>=C2=A0<u></u></p>
<div>
<p class=3D"MsoNormal">Is there a typo in your email, or did you set=C2=A0d=
fs.cluster.administrators instead of intending to set dfs.permissions.super=
usergroup?<u></u><u></u></p>
<div>
<p class=3D"MsoNormal"><u></u>=C2=A0<u></u></p>
</div>
<div>
<p class=3D"MsoNormal">Also, are your id outputs from the NameNode machines=
? Cause by default the group lookups happen local to your NameNode machine.=
<u></u><u></u></p>
</div>
<div>
<p class=3D"MsoNormal"><u></u>=C2=A0<u></u></p>
<div>
<div>
<div>
<p class=3D"MsoNormal">On Sat, Jul 25, 2015 at 1:31 AM Gangavarapu, Venkata=
 &lt;<a href=3D"mailto:Venkata.Gangavarapu@bcbsa.com" target=3D"_blank">Ven=
kata.Gangavarapu@bcbsa.com</a>&gt; wrote:<u></u><u></u></p>
</div>
<blockquote style=3D"border:none;border-left:solid #cccccc 1.0pt;padding:0i=
n 0in 0in 6.0pt;margin-left:4.8pt;margin-right:0in">
<div>
<div>
<p class=3D"MsoNormal">Hi,<u></u><u></u></p>
<p class=3D"MsoNormal">=C2=A0<u></u><u></u></p>
<p class=3D"MsoNormal">I have add two groups under
<span style=3D"font-size:10.0pt;font-family:UbuntuMono-Regular">dfs.permiss=
ions.superusergroup property as below</span><u></u><u></u></p>
<p class=3D"MsoNormal">&lt;property&gt;<u></u><u></u></p>
<p class=3D"MsoNormal">=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0 &lt;name&gt;dfs.clust=
er.administrators&lt;/name&gt;<u></u><u></u></p>
<p class=3D"MsoNormal">=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0 &lt;value&gt; hdfs,hd=
pdadmngrp&lt;/value&gt;<u></u><u></u></p>
<p class=3D"MsoNormal">=C2=A0=C2=A0=C2=A0 &lt;/property&gt;<u></u><u></u></=
p>
<p class=3D"MsoNormal">=C2=A0<u></u><u></u></p>
<p class=3D"MsoNormal">Restarted the HDFS after the change.<u></u><u></u></=
p>
<p class=3D"MsoNormal">=C2=A0<u></u><u></u></p>
<p class=3D"MsoNormal">But I am not able to run the below command<u></u><u>=
</u></p>
<p class=3D"MsoNormal">hdfs dfsadmin =E2=80=93refreshNodes<u></u><u></u></p=
>
<p class=3D"MsoNormal">=C2=A0<u></u><u></u></p>
<p class=3D"MsoNormal">=C2=A0<u></u><u></u></p>
<p class=3D"MsoNormal">Error says I don=E2=80=99t have privilege to run the=
 above command<u></u><u></u></p>
<p class=3D"MsoNormal">=C2=A0<u></u><u></u></p>
<p class=3D"MsoNormal">My cluster is kerberized. I have principal for my us=
er id.<u></u><u></u></p>
<p class=3D"MsoNormal">=C2=A0<u></u><u></u></p>
<p class=3D"MsoNormal">Hdfs user:<u></u><u></u></p>
<p class=3D"MsoNormal">uid=3D504(hdfs) gid=3D501(hadoop) groups=3D501(hadoo=
p),503(hdfs),506(hdpdadmngrp)<u></u><u></u></p>
<p class=3D"MsoNormal">=C2=A0<u></u><u></u></p>
<p class=3D"MsoNormal">New admin user:<u></u><u></u></p>
<p class=3D"MsoNormal">uid=3D1007(gv07680) gid=3D506(hdpdadmngrp) groups=3D=
506(hdpdadmngrp)<u></u><u></u></p>
<p class=3D"MsoNormal">=C2=A0<u></u><u></u></p>
<p class=3D"MsoNormal">I am using hadoop-2.6.0<u></u><u></u></p>
<p class=3D"MsoNormal">=C2=A0<u></u><u></u></p>
<p class=3D"MsoNormal">Please help me with this.<u></u><u></u></p>
<p class=3D"MsoNormal">=C2=A0<u></u><u></u></p>
<p class=3D"MsoNormal">Thanks,<u></u><u></u></p>
<p class=3D"MsoNormal">Venkat<u></u><u></u></p>
</div>
</div>
</blockquote>
</div>
</div>
</div>
</div>
</div></div></blockquote></div>

--001a113ee79c0e3d45051bd3885b--