Enable HBase Access Control

The following steps explain how to enable HBase ACLs.

Procedure

  1. On the HBase Region Server, edit the /opt/mapr/hbase/hbase-<version>/conf/hbase-site.xml file, and add the following section: 
    <property>
    <name>hbase.coprocessor.region.classes</name>
    <value>org.apache.hadoop.hbase.security.token.TokenProvider,org.apache.hadoop.hbase.security.access.AccessController</value>
</property>
<property>
    <name>hbase.superuser</name>
    <value><admin1>,<admin2>,@<group1>,...</value> <!-- group names are
prefixed with '@' -->
  </property>
  2. On the HBase Master, edit the /opt/mapr/hbase/hbase-<version>/conf/hbase-site.xml file, and add the following section: 
    <property>
    <name>hbase.coprocessor.master.classes</name>
    <value>org.apache.hadoop.hbase.security.access.AccessController</value>
</property>
<property>
    <name>hbase.superuser</name>
    <value><admin1>,<admin2>,@<group1>,...</value> <!-- group names are
prefixed with '@' -->
  </property>
  3. Restart HBase on every node.