Support Questions

Find answers, ask questions, and share your expertise
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Advanced Search
Announcements
Check out our newest addition to the community, the Cloudera Data Analytics (CDA) group hub.

How to create a application user/group across the cluster

Labels:
hadoopadmn99
Explorer

Created ‎05-02-2017 05:05 PM

Hi,

I am trying to create a application user/group for ingesting data, or application user can run a job how this can be handle and how this user can reflect too all nodes at one shot! can i use ansible for this so it can be reflect to all nodes? or any other way we have solution for this?

1,699 Views
0 Kudos
7 REPLIES 7

wbekker
Guru

Created ‎05-02-2017 05:14 PM

Hi Naveen, you have the option to add local users/group or sync with LDAP: See http://docs.hortonworks.com/HDPDocuments/Ambari-2.2.1.0/bk_Ambari_Admin_Guide/content/_local_and_lda...

1,456 Views
0 Kudos

mqureshi
Super Guru

Created ‎05-02-2017 05:17 PM

@Naveen R

You can create users in LDAP and use them across machines or create users on each machine. If security is enabled, which I guess it is, then Kerberos principals need to be created and will be mapped to unix users using hadoop.security.auth_to_local property. Kerberos principals have a FQDN components sothey will be separate for each node.

I am not sure how ansible can help with this requirement. The easiest way to automate this is to use Ambari.

1,456 Views
0 Kudos

hadoopadmn99
Explorer

Created ‎05-02-2017 05:38 PM

thanks for you response,

let's say i have a application user for application purpose ex: twitteruser how this user need to be created across all nodes? we don't want to create a user with there own name if that user left again we need to rewite the code for deployment

i already set up user in ldap so those can use in ambari access level only

1,456 Views
0 Kudos

hadoopadmn99
Explorer

Created ‎05-02-2017 05:39 PM

@ ward bekker @ mqureshi

1,456 Views
0 Kudos

mqureshi
Super Guru

Created ‎05-02-2017 05:40 PM

just connect your nodes to LDAP. That's it. @Ward Bekker has shared the instructions.

1,456 Views
0 Kudos

hadoopadmn99
Explorer

Created ‎05-02-2017 05:43 PM

is user " twitteruser" is created and how the passwords can manage on it?

1,456 Views
0 Kudos

mqureshi
Super Guru

Created ‎05-03-2017 06:29 PM

It's all going to be through LDAP. Otherwise create a twitteruser on all nodes (with same password) - not recommended.

1,456 Views
0 Kudos
Take a Tour of the Community
Don't have an account?
Register
Your experience may be limited. Sign in to explore more.
Announcements
Product Announcements
CDP Public Cloud: May 2023 Release Summary
What's New @ Cloudera
Cloudera Operational Database (COD) provides enhancements to the --scale-type CDP CLI option
What's New @ Cloudera
Cloudera Operational Database (COD) UI supports creating a smaller cluster using a predefined Data Lake template
What's New @ Cloudera
Cloudera Operational Database (COD) supports scaling up the clusters vertically
Product Announcements
CDP Public Cloud: April 2023 Release Summary
View More Announcements