Will do, thanks Mahadev... Its basically for a multi-tenanted approach. We want to use a single Ambari server and provision users and clusters for each tenant. Each tenant could then access their resources via the API with their own user.
Thanks again... On Mon, Aug 5, 2013 at 5:14 PM, Mahadev Konar <[email protected]>wrote: > Thats a good one. Currently the authorization is not fine grained at all. > Do you want to open a jira for this? This would be nice one to add as part > of finer grained ACL's. > > thanks > mahadev > > > On Sun, Aug 4, 2013 at 9:48 PM, Christian Smith <[email protected] > > wrote: > >> Hi Mahadev, >> >> Sorry maybe I wasn't very clear, this question was more from an Ambari >> UI/API perspective. Say for instance I have three clusters, each with >> different hosts and services. I would like to give user jdoe admin access >> to only cluster 1, this would prevent him seeing any other clusters and >> their resources. >> >> Is this possible? >> >> Thanks, >> Christian >> >> >> On Mon, Aug 5, 2013 at 4:29 PM, Mahadev Konar <[email protected]>wrote: >> >>> Christian, >>> Not sure what you mean by restrict users to clusters but right now the >>> way you would do it is by queue acls in MR and no user home directories in >>> HDFS. Please note htat you will have to setup Kerberos security if you >>> really want to make sure data access is restricted to some users in another >>> cluster. >>> >>> thanks >>> mahadev >>> >>> On Fri, Aug 2, 2013 at 7:01 PM, Christian Smith < >>> [email protected]> wrote: >>> >>>> Hi, >>>> >>>> I'm wondering if it's possible to restrict user access to specific >>>> cluster? >>>> >>>> Cheers, >>>> Christian >>>> >>> >>> >> >
