Security and Authentication

To protect data from unauthorized access, some HBase data stores require connections to be authenticated with user credentials or encrypted using the SSL protocol. The Simba HBase ODBC Driver provides full support for these authentication protocols.

Note:

In this documentation, "SSL" refers to both TLS (Transport Layer Security) and SSL (Secure Sockets Layer). The connector supports SSL 2.0 and 3.0, and TLS 1.0 and 1.2. The SSL version used for the connection is the highest version that is supported by both the connector and the server.

The connector provides a mechanism that enables you to authenticate your connection using your HBase user name and password. Additionally, the Linux and macOS connectors support authentication using Basic Kerberos and Advanced Kerberos. Basic Kerberos authentication requires you to run a command to generate the Kerberos ticket, while Advanced Kerberos authentication enables the connector to generate Kerberos credentials automatically based on the user name specified for the connection. For detailed configuration instructions, see Configuring AuthenticationConfiguring Authentication.

Additionally, the connector supports SSL connections with or without one-way authentication. If the server has an SSL-enabled socket, then you can configure the connector to connect to it.

It is recommended that you enable SSL whenever you connect to a server that is configured to support it. SSL encryption protects data and credentials when they are transferred over the network, and provides stronger security than authentication alone. For detailed configuration instructions, see Configuring SSL VerificationConfiguring SSL Verification.