Give users access to your cluster

Provides information about how to give various users access to your Streaming Analytics cluster.

The cluster you have created using the Streaming Analytics cluster definition is kerberized and secured with SSL. Users can access cluster UIs and endpoints through a secure gateway powered by Apache Knox. Before you can begin developing data flows, you must provide users access to the Streaming Analytics cluster components.

  1. Assign the EnvironmentUser role to the users to grant access to the CDP environment and the Streaming Analytics cluster.
  2. Add the user to the appropriate predefined Ranger policies.
  3. Create IDBroker mapping.

    You must create IDBroker mapping for a user or group to have access to the S3 cloud storage. As a part of Knox, the IDBroker allows a user to exchange cluster authentication for temporary cloud credentials.

    1. Go to Management Console > Environment.
    2. Search for your environment from the list of available environments.
    3. Click the Actions button.
    4. Select Manage Access from the drop-down list.
    5. Click on the IDBroker Mappings tab.
    6. Click Edit to add a new user or group and assign roles to have a writing access for the cloud storage.
    7. Click Save and Sync.