Logging into the CDP CLI/SDK
You can log into the CDP CLI using two different methods. The interactive method described in this topic integrates with any SAML-compliant external identity provider.
There are two ways to log into the CDP CLI/SDK. The traditional method requires
generating access credentials (an API access key and private key), then configuring the
~/.cdp/credentials
file with the key pair. In this method the access
credentials are permanent until they are removed from the
~/.cdp/credentials
file. If you prefer to use this method of access, you
can skip to the following topics: Generating an API access key and
Configuring Cloudera client with the API access
key. It is possible that this traditional login method may be disabled by an
administrator, and therefore unavailable to some users.
If you would prefer that user access to the CLI/SDK is shorter-lived, you can use the "interactive" method of logging into the CDP CLI/SDK. By default, this login method grants a 12-hour access key to the CLI/SDK. The access key will time out after one hour of inactivity. The interactive method integrates with any SAML-compliant external identity provider. To set up the interactive method of logging into the CLI/SDK, follow the steps below.
- Determine which identity provider you want to use for login. If you do not specify an IdP in the login command, the login command will use your default IdP, which is typically the oldest identity provider configured under .
- Verify that the identity provider you are using has been configured for SAML-based sign on.
- Take note of your Cloudera tenant/account ID. To find it, click your user name in the bottom left hand navigation menu, select Profile, and then copy the Tenant ID field.