Assigning administrator level permissions
As a CDP administrator, assign the EnvironmentAdmin role to enable users to have administrator-level privileges to the environment. With the EnvironmentAdmin role, the user can access and manage environments, Flow Management clusters, and NiFi and NiFi Registry resources. Users can also authorize other users to access flow management resources.
Ensure that you meet the following prerequisites:
- You created a Flow Management cluster.
- You determined the permission level for each user.
- Access and manage the environment and Flow Management clusters.
- Authorize users or groups by adding them to Ranger access polices.
- Modify or create conditions in predefined Ranger access policies.
- Create new Ranger access policies and create conditions that specify the desired level of access for each user or group.
To authorize flow management users who do not require administrator-level permission, add the users individually or as a group to specific Ranger access policies for selective access to NiFi and NiFi Registry resources. For more information, see Assigning selective permissions to a user.