Deleting users for Identity Providers
You must complete the following steps if you want to delete a specific Identity Provider (IdP) user from the virtual cluster. Perform these steps for each user that you want to delete from the virtual cluster.
- If you already downloaded the utility script and uploaded it to an Cloudera Embedded Container Service or HDFS gateway cluster host as documented in Creating virtual clusters, you can skip to step 7.
-
Download
cde-utils.sh
to your local machine. -
Create a directory to store the files, and change to that
directory:
mkdir -p /tmp/cde-utils && cd /tmp/cde-utils
-
Cloudera Embedded Container ServiceCopy the extracted utility script (
cde-utils.sh
) to one of the Cloudera Embedded Container Service cluster hosts. To identify the Cloudera Embedded Container Service cluster hosts:- Log in to the Cloudera Manager web interface.
- Click Clusters tab.
- Click the relevant Cloudera Embedded Container Service cluster from the list of the clusters displayed.
- Under Status, click Hosts link.
- Copy the script to the master host.
Copy the extracted utility script (
cde-utils.sh
) and the OpenShiftkubeconfig
file to one of the HDFS service gateway hosts, and install thekubectl
utility:- Log in to the Cloudera Manager web interface.
- Go to Clusters > Base Cluster > HDFS > Instances.
- Copy the script to one of the Gateway hosts.
- Copy the OCP kubeconfig file to the same host.
- On that host, install the
kubectl
utility following the instructions in the Kubernetes documentation.
-
On the cluster host that you copied the script to, set the script
permissions to be
executable:
chmod +x /path/to/cde-utils.sh
-
Identify the virtual cluster endpoint:
- In the Cloudera Manager web UI, go to the Data Services page, and then click Open Cloudera Private Cloud Data Services.
- Click the Data Engineering tile.
- Select the Cloudera Data Engineering service containing the virtual cluster you want to activate.
- Click
Cluster Details.
- Click JOBS API URL to copy the URL to your clipboard.
- Paste the URL into a text editor to identify the endpoint host. For example, the URL
is similar to the
following:
https://dfdj6kgx.cde-2cdxw5x5.apps.ecs-demo.example.com/dex/api/v1
The endpoint host is
dfdj6kgx.cde-2cdxw5x5.apps.ecs-demo.example.com
.
-
Use the
cde-utils.sh
script to delete the user keytab from the virtual cluster hosts:
For example, using the./cde-utils.sh delete-user-in-virtual-cluster -h ***ENDPOINT_HOST*** -u ***USER***
psherman
user, for thedfdj6kgx.cde-2cdxw5x5.apps.ecs-demo.example.com
endpoint host:./cde-utils.sh delete-user-in-virtual-cluster -h dfdj6kgx.cde-2cdxw5x5.apps.ecs-demo.example.com -u psherman
- Repeat these steps for all the users that you want to delete from the virtual cluster hosts.