Administering Ranger Users, Groups, Roles, and Permissions

To view a list of the users, groups, and roles that can access the Ranger portal or its services, select Settings > Users/Groups/Roles in the top menu.

The Users/Groups/Roles page lists:

  • Internal users who can log in to the Ranger portal; created by the Ranger console Service Manager.

  • External users who can access services controlled by the Ranger portal; created at other systems such as Active Directory, LDAP, or UNIX, and synched with those systems.

  • Admin users who are the only users with permission to create users and services, run reports, and perform other administrative tasks. Admin users can also create child policies based on the original policy (base policy).

  • On the Groups page, you can click the people icons in the Users column to view the members of the applicable group.
  • On the Roles page, you can view the roles that have been mapped to users and groups. You can more easily apply changes to roles, which are application-managed, than to users and groups.