cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results forย 
Search instead forย 
Did you mean:ย 
Help
Community Platform Discussions
Connect with fellow community members to discuss general topics related to the Databricks platform, industry trends, and best practices. Share experiences, ask questions, and foster collaboration within the community.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results forย 
Search instead forย 
Did you mean:ย 

hive_metastore schema access control

icyapple
New Contributor

โ€Ž07-09-2024 11:08 PM

We are trying to control access to schemas under hive_metastore, only allowing certain users to access the tables under a schema (via SQL, Pyspark, and Python...), we have follow steps in a testing schema:

1. Enable workspace table access control

2. Run GRANT ALL PRIVILEGES ON SCHEMA  test to the user ID myself

3.  spark.sql("REVOKE ALL PRIVILEGES ON SCHEMA test FROM admins")

4. spark.sql("REVOKE ALL PRIVILEGES ON SCHEMA test FROM users")

But after these steps, other users still can see the tables under the test schema and run the SELECT statement for the tables under it. 

Has anyone encountered a similar issue or have suggestions on how to make it work?

Thanks in advance.

0 Kudos
3 REPLIES 3

Witold
Contributor III

โ€Ž07-10-2024 12:54 AM

This is pretty outdated, you should use unity catalog instead. However, have you followed the docs? But again, it's legacy stuff.

0 Kudos

PSR100
New Contributor III

โ€Ž07-11-2024 01:21 AM

As per my understanding, all the tables in the hive_metastore will be accessible to all the users as it will be the default metastore available for the workspace. You can move the tables to the Unity catalog tables where you will have the option to have a control over the tables with these ACL's.

0 Kudos

Rishabh_Tiwari
Databricks Employee
Databricks Employee

โ€Ž07-18-2024 09:41 AM

Hi @icyapple ,

Thank you for reaching out to our community! We're here to help you. 

To ensure we provide you with the best support, could you please take a moment to review the response and choose the one that best answers your question? Your feedback not only helps us assist you better but also benefits other community members who may have similar questions in the future.

If you found the answer helpful, consider giving it a kudo. If the response fully addresses your question, please mark it as the accepted solution. This will help us close the thread and ensure your question is resolved.

We appreciate your participation and are here to assist you further if you need it!

Thanks,

Rishabh

0 Kudos

Connect with Databricks Users in Your Area

Join a Regional User Group to connect with local Databricks users. Events will be happening in your city, and you wonโ€™t want to miss the chance to attend and share knowledge.

If there isnโ€™t a group near you, start one and help create a community that brings people together.

Request a New Group
Announcements