Hortonworks Docs » Hortonworks Data Platform 3.1.4 » Apache ZooKeeper ACLs
Apache ZooKeeper ACLs
Also available as:
PDF

ZooKeeper ACLs Best Practices: Storm

You must follow the best practices for tightening the ZooKeeper ACLs or permissions for Storm when provisioning a secure cluster.

  • ZooKeeper Usage:

    • /storm - All data for storm metadata, Storm's root znode

  • Default ACLs:

    • /storm - world:anyone:cr

    • /storm - sasl:storm-PRD1:cdrwa

      Where -PRD1 comes from StormClient Principal and Ambari creates the principal with storm-<cluster_name> .

  • Security Best Practice ACLs/Permissions and Required Steps:

    • /storm - world:anyone:cr

    • /storm - sasl:storm-PRD1:cdrwa

      Where -PRD1 comes from StormClient Principal and Ambari creates the principal with storm-<cluster_name> .

    -->
© 2012–2019, Hortonworks, Inc.
Document licensed under the Creative Commons Attribution ShareAlike 4.0 License.
Hortonworks.com | Documentation | Support | Community