Cloudera machine user

A machine user account provides programmatic access to Cloudera. Create a machine user account if you have an application that needs to access the Cloudera services with the CLI or the Cloudera SDK for Java.

You can define the machine user account in your application to create and manage clusters and run jobs in Cloudera using the CLI or API commands.

You can create and manage a machine user account within Cloudera. You must assign an API access key to a machine user account to enable it to access the Cloudera service with the CDP CLI or Cloudera SDK. You must assign roles to a machine user account to authorize it to perform tasks in Cloudera.

A machine user account does not have an associated Cloudera user account. You cannot use a machine user to log in to the Cloudera console.

Use the following guidelines when you manage user accounts in Cloudera:

  • When you create a machine user account, you assign roles and environments to the machine user account in the same way that you assign roles and environments to other user accounts.
  • You can revoke permissions for a Cloudera machine user account by removing the machine user from groups or unassigning account level or resource roles.
  • Deleting a machine user removes all access keys and SSH keys associated with the machine user, and unassigns all roles and resource roles assigned to the machine user. The machine user is also removed from all groups that they belong to.