Enabling admin and user access to Cloudera Data Hub clusters
Cloudera Data Hub resource roles can be assigned on the scope of a specific Cloudera Data Hub cluster.
When you grant access to admins and users of a Cloudera Data Hub, consider the following guidelines:
- Any user or group that needs to access a specific Cloudera Data Hub needs the EnvironmentUser role at the scope of the environment where that Cloudera Data Hub cluster is running.
- A user with the DataHubCreator (or higher) account role can create Cloudera Data Hub clusters.
- The user who creates a Cloudera Data Hub cluster gets the Owner role for that Cloudera Data Hub cluster.
- The Owner of the Cloudera Data Hub cluster can grant
others access to the cluster. The following roles can be assigned:
- Owner - Grants the permission to mange the Cloudera Data Hub cluster in Cloudera and delete it. It does not grant any cluster-level access (such as access to Cloudera Manager).
- DataHubAdmin (Technical Preview) - Grants administrative rights over the Cloudera Data Hub cluster.
The roles are described in detail in Resource roles. The steps for assigning the roles are described in Assigning resource roles to users and Assigning resource roles to groups.
