Enabling hierarchical authorization

You can enable or disable the hierarchical authorization parameter in Cloudera Manager to simplify access management.

Enabling this parameter allows you to assign policies to access parent level clusters and its child clusters. If you disable this feature, you must create separate access policies for parent and child clusters. This parameter is enabled by default.

You must enable the Role Based Access enabled parameter before enabling the Hierarchical Authorization Enabled parameter.

Log in to Cloudera Manager
Click Cloudera Observability
Click Configuration
In the search box, search for the Role Based Access enabled parameter
Select the Role Based Access enabled check box.
Click Save Changes.
In the search box, search for the Hierarchical Authorization Enabled parameter
Select the Hierarchical Authorization Enabled check box.

note
You must create separate access policies for parent and child clusters if you clear the Hierarchical Authorization Enabled checkbox.
Click Save Changes
Click Actions
Click Restart

This will allow you to access both parent level and child level environments.