Created 09-19-2017 06:14 AM
yarn-resourcemanager.zk-acl its value is "world:anyone:rwcda" which is default one, but i just want to understand what these terms are in value like world, anyone, rwcda
Created 09-19-2017 06:25 AM
world:anyone means the permissions apply to all users trying to connecting to Zookeeper.
The permissions string consists of one or more of the following characters: r (read), w (write), c (create), d (delete), and a (admin).
Created 09-19-2017 06:47 AM
i want to give permission to admin only what has to be done ?
Created 09-19-2017 06:51 AM
Created 09-19-2017 07:11 AM
I see that @Sindhu explained correctly about the meaning of this properly.
Why do you want to set the property to "admin" ?
"yarn.resourcemanager.zk-acl" ACLs to be used for setting permissions on ZooKeeper znodes. The default value is world:anyone:rwcda.
Why do you want to set the Zookeeper Nodes permission to admin?
Created 09-19-2017 08:26 AM
i want to disable resource manager ui to all non admin users,
Created 09-19-2017 08:29 AM
@Jay SenSharma can you suggest something by which i can disable resource manager ui to all users except admin.
yarn ->quick links -> resource manager ui
when user clicks on resource manager ui it should not work
Created 09-19-2017 09:00 AM
By default, access to the HTTP-based services and UI’s for the cluster are not configured to require authentication. Kerberos authentication can be configured for the Web UIs for HDFS, YARN, MapReduce2, HBase, Oozie, Falcon and Storm.
So if you want any kind of Authentication for your UIs (ResourceManager UI) then you can try the "SPNEGO" Approach:
Created 09-19-2017 11:04 AM