Database Reference
In-Depth Information
Impala does not support application data wire encryption. Once your Hadoop distri-
bution has Kerberos security enabled, you can enable Kerberos security in Impala.
Note
To learn more about enabling Kerberos security features with Impala, please visit
the Cloudera Impala documentation website, where you can find the latest in-
formation.
Auditing
Auditing means keeping account of each and every operation executed in the system
and maintaining a record of whether they succeed or failed. Using auditing features,
users can look back to check what operation was executed and what part of the data
has been accessed by which user. The auditing feature helps track down such activ-
ities in the system, so respective professionals can take proper measurements. In
Impala, the auditing feature produces audit data, which is collected and presented in
user-friendly details by Cloudera Manger.
Auditing features are introduced with Impala 1.1.1 and the key features are as fol-
lows:
• Enable auditing directory with the
impalad
startup option using
audit_event_log_dir
.
• By default, Impala starts a new audit logfile after every 5,000 queries. To
change this count, use the
-max_audit_event_log_file_size
option
with the impalad startup option.
• Optionally, the Cloudera Navigator application is used to collect and consol-
idate audit logs from all nodes in the cluster.
• Optionally, Cloud Manager is used to filter, visualize, and produce the audit
reports.
Here are the types of SQL queries that are logged with audit logs:
• Blocked SQL queries that could not be authorized
• SQL queries that are authorized to execute are logged after analysis is done
and before the actual execution
