Adding a role instance to IDBroker in Cloudera Manager
To use IDBroker to access the cloud credentials, you must add a role instance to IDBroker, and then you configure the required properties for it in Cloudera Manager.
- an IAM policy which allows you to access the S3 bucket to which you want to replicate the data.
- an IAM role, which you can assume, that has the above policy attached to it.
If you have upgraded or installed the CDP Private Cloud Base cluster, ensure that IDBroker is available. IDBroker is automatically configured by Cloudera Manager in CDP deployments, where Knox is installed. For more information about IDBroker, see Configuring access to S3.