Cloudera Navigator Data Management Component User Roles

User roles determine the Cloudera Navigator features visible to the user and the actions the user can perform.

User Roles

A Cloudera Navigator data management component user account can be assigned one of the following user roles:
  • Lineage Viewer - Search for entities, view metadata, and view lineage.
  • Auditing Viewer - View audit events and create audit reports.
  • Policy Viewer - View metadata policies.
  • Metadata Administrator - Search for entities, view metadata, view lineage, and edit metadata.
  • Policy Administrator - View, create, update, and delete metadata and metadata policies.
  • User Administrator - Administer role assignments to groups.
  • Full Administrator - Full access, including role assignments to groups.

The user roles and associated permissions are summarized as follows:

Cloudera Navigator Data Management Component User Roles

User
Role

Read
Audit

Read
Lineage

Read
Metadata
(Search)

Write
Metadata
(Edit)

Read
Policies

Write
Policies

Administer
Role Group
Mapping

Full Administrator
User Administrator

Auditing
Viewer

Lineage
Viewer

Metadata
Administrator

Policy
Viewer

Policy
Administrator

Determining the Roles of the Currently Logged in User

To display the Cloudera Navigator user roles for the currently logged-in user:

  1. Click the username in the upper right.
  2. Click My roles.
  3. The Roles pop-up window will appear, displaying all roles assigned to the LDAP or Active Directory groups to which the current user belongs.

The selection of menus displayed in the upper right indicates the user's access to Cloudera Navigator features, as determined by the roles associated with the user's LDAP or Active Directory groups. For example, a Full Administrator will see the Search, Audits, Policies, and Administration menus, while a user with the Policy Administrator role will only see the Search and Policies menus.