Security requirements for Cloudera Data Warehouse on premises
This topic describes security requirements needed to install and run Cloudera Data Warehouse on premises service on Red Hat OpenShift and Embedded Container Service (ECS) clusters.
Required OpenShift/ECS cluster permissions
The Cloudera Data Warehouse service requires the "cluster-admin" role on the OpenShift and ECS cluster in order to install correctly. The "cluster-admin" role enables namespace creation and the use of the OpenShift Local Storage Operator for local storage.
Cloudera on premises LDAP certificate requirement
A certificate authority (CA) certificate for secure LDAP must be uploaded to the Administration page of Cloudera Management Console to run Cloudera Data Warehouse on premises service:
