Artifact access management

Learn about what artifact access management is and how to share artifacts between users or groups.

By default, users can only manage the artifacts that are either created by them or if they are explicitly shared with them with full access by another user or group. Only users or groups with full access can share the artifacts with others. Users or members of a group with read-only access to the artifact cannot share or manage the artifact. You can share an artifact that you own with another user or group with either full access or read only access. A user or a group can share all the artifacts except Sessions while creating or after creating them. Sessions can only be shared while creating them.

If the Restrict sharing by default option in Privacy Settings is not enabled for a Virtual Cluster, all the artifacts associated with that Virtual Cluster can be managed with full access by all users who have access to the Virtual Cluster. The users with Admin roles such as DEAdmin, Service Admin, and VC Admin have full access to the artifacts. The users with the VC Viewer role have view-only access to all the artifacts. The users with a VC User role can access the artifacts only if they are shared with them by the owner who created that artifact or a user with Admin role.

Limitations

• You can only share an artifact through the Cloudera Data Engineering API or CLI. You cannot share artifacts through the Cloudera Data Engineering UI.
• A user or a group who can access the Virtual Cluster can view the Spark History Server UI for all jobs in the virtual cluster.