Table of Contents

Search

  1. Preface
  2. Part 1: Hadoop Integration
  3. Part 2: Databricks Integration
  4. Appendix A: Connections

Grant Access Permissions to ADLS Gen1 Storage

Grant Access Permissions to ADLS Gen1 Storage

Depending on how the HDInsight cluster is secured, perform the tasks in this section to grant access to ADLS Gen1 storage.

Enterprise Security Package-enabled Clusters

If an Azure HDInsight cluster is enabled with the Enterprise Security Package, grant the following permissions to all the users:
  • Execute permission on the root folder and its subfolders of the ADLS Gen1 account.
  • Read and execute permissions on the following directory and its contents:
    /hdp/apps/<version>
  • Read, write, and execute permissions on the following directories:

      /tmp

      /app-logs

      /hive/warehouse

      /blaze/workdir

      /user

      /var/log/hadoop-yarn/apps

      /mr-history

      /tezstaging

      /mapreducestaging

    If the directories are not available, create the directories and grant the required permissions.
  • Assign the Owner role to the Azure HDInsight cluster service principal display name. See Assigning the Owner Role to the Service Principal User.

Non-Enterprise Security Package-enabled Clusters

If the cluster is not enabled with the Enterprise Security Package: