MapReduce Job ACLs
Create and use the following MapReduce Application ACLs to view YARN logs.
Provides read access to the MapReduce history and the YARN logs.
mapreduce.job.acl-modify-jobProvides the same access as
mapreduce.job.acl-view-job, and also allows the user to modify a running job.
Killing an application
The Application ACL
mapreduce.job.acl-modify-job determines whether or not a user can modify a job, but in
the context of YARN, this only allows the user to kill an application. The kill action is
application agnostic and part of the YARN framework. Other application types, like MapReduce or
Spark, implement their own kill action independent of the YARN framework. MapReduce provides the
kill actions via the
- The application owner
- A cluster administrator defined in
- A queue administrator defined in
aclAdministerAppsfor the queue in which the application is running
Note that for the queue administrators, ACL inheritance applies, as described earlier.