Xinli, Do you mean you disabled HDFS sync with sentry and manually create ACL at HDFS? If you enabled HDFS sync with sentry, sentry privileges will be sent to HDFS and will take effect. It would be security concern if you give all users root "/" permission.
Thanks, Lina On Fri, Mar 9, 2018 at 3:20 PM, shang xinli <shangxi...@hotmail.com> wrote: > Hi all, > > > If all the tables data are stored in HDFS and have ACLs for each group > controlled, is it a still secure concern if I disable AuthorizableType.URI > permission check by giving all users root '/' permission? > > > > Xinli >