Give users access to your cluster

Provides information about how to give various users access to your Streams Messaging cluster.

The cluster you have created using the Streams Messaging cluster definition is kerberized and secured with SSL. Users can access cluster UIs and endpoints through a secure gateway powered by Apache Knox. Before you can begin working with Kafka, Schema Registry, and Streams Messaging Manager, you must give users access to the Streams Messaging cluster components.
  1. Assign the EnvironmentUser role to the users to grant access to the CDP environment and the Streams Messaging cluster.
  2. Add the user to the appropriate pre-defined Ranger policies.
    These policies are specified within the Ranger instance that provides authorization to the Kafka service in your Streams Messaging cluster.
    If needed, you can also create a custom Ranger access policy and add the user to it.