Hi Lunen, Is the drillbit process running? If not, look for errors in logs in */opt/apache-drill-1.6.0/log*
In embedded mode, Zookeeper is not required. Try: *bin/sqlline –u "jdbc:drill:zk=local" -n user1 -p user1PW* This command starts and connects to a drillbit (which is embedded in the sqlline process). Notice that *impersonation_target* is also not required. Thank you, Sudheesh On Wed, Apr 27, 2016 at 1:51 AM, Lunen de Lange <[email protected]> wrote: > Hi All, > > > > I’m having issues getting impersonation to work. > > I'm trying to build in security on our Drill (1.6.0) system. I managed to > get the security user authentication to work(JPam as explained in the > documentation), but the impersonation does not seem to work. It seems to > execute and fetch via the root user regardless of who has logged in via > ODBC. > > My drill-override.conf file is configured as follows: > > drill.exec: { > > cluster-id: "drillbits1", > > zk.connect: "localhost:2181", > > impersonation: { > > enabled: true, > > max_chained_user_hops: 3 > > }, > > security.user.auth { > > enabled: true, > > packages += "org.apache.drill.exec.rpc.user.security", > > impl: "pam", > > pam_profiles: [ "sudo", "login" ] > > } > > } > > We are also only using Drill on one server, therefore I'm running > drill-embedded to start things up. > I’m starting up my Zookeeper separately. (I can see the drill instance > connect to ZK) > > > When I try sqlline, with the following command, I get a “No > DrillbitEndpoint can be found” > root@machinename:/opt/apache-drill-1.6.0/bin# ./sqlline –u > “jdbc:drill:schema=dfs;zk=localhost:2181;impersonation_target=user1” – n > user1 –p user1PW > > > > I have also looked at doing my own built in security, but I'm not able to > retrieve the username from a SQL query. I have tried the following without > any luck: > CURRENT_USER() > USER() > SESSION_USER() > Any ideas on this approach? > > Kind regards, > [image: Intenda Logo.jpg] > *Lunen de Lange* > > *Big Data Developer/Project Manager* > > +44 (0)782 463 4516 ' | Tel: +44 (0)845 468 3632 | Direct: 01707 367 628 > | http://www.intenda.net8 |[image: cid:[email protected]] > <http://www.facebook.com/pages/Intenda/182485305152885?sk=info> |[image: > cid:[email protected]] > <http://www.linkedin.com/company/intenda> |[image: > cid:[email protected]] <http://www.twitter.com/Intenda_News> > > IMPORTANT NOTICE: This communication contains information that is > confidential and may also be privileged. It is for the exclusive use of the > intended recipient(s). Any unauthorized use, alteration or dissemination is > > prohibited. If you have received this communication in error, please > return it with the title "received in error" to > Mailto:[email protected] <[email protected]>* <* > mailto:[email protected] <[email protected]>*>* then delete > the email and destroy > > any copies of it. Any views expressed in this message are those of the > individual sender and not necessarily those of Intenda UK Ltd. Intenda UK > Ltd accepts no liability whatsoever for any loss whether it be direct, > > indirect or consequential, arising from information made available and > actions resulting there from. > > P Think be4 u print > > > > >
