About Oracle Big Data Cloud Service Users and Roles
Oracle Big Data Cloud Service supports the following service roles and operating system roles.
Cloud Service Users and Roles
In addition to the roles and privileges described in Oracle Cloud User Roles and Privileges in Getting Started with Oracle Cloud, the following roles are created for Oracle Big Data Cloud Service:
-
Big Data Administrator
A user assigned this role has complete administrative control over the service.
-
Viewer
A user assigned this role has read-only access to the service.
When the Oracle Big Data Cloud Service account is first set up, the service administrator is given the Big Data Administrator role. User accounts must be added and assigned one of the above roles before anyone else can access and use Oracle Big Data Cloud Service.
Only the identity domain administrator is allowed to create user accounts and assign roles. See Adding Users and Assigning Roles in Managing and Monitoring Oracle Cloud.
The predefined Oracle Big Data Cloud Service roles are associated with specific clusters. That is, if you have two clusters called test123 and production123, four predefined roles are available to assign to users:
-
test123 Big Data Administrator
-
test123 Viewer
-
production123 Big Data Administrator
-
production123 Viewer
Users have access only to those clusters associated with the roles assigned them. For example, in the above case, a user might be assigned the role Big Data Administrator for test123 and the role Viewer for production123.
Big Data Manager Users and Roles.
By default, the bigdatamgr
user is created and granted the administrator role. This user should be used to grant roles and register providers. The bigdatamgr
user has the same password as the Cloudera Manager administrator that was defined in Create Cluster wizard when creating the cluster.
Operating System Users and Roles
Every Oracle Big Data Cloud Service cluster node is provisioned with the following operating system user accounts.
-
opc
The system administrator account you use in conjunction with the
sudo
command to gainroot
user access to your nodes. By default,opc
doesn’t allow connection using a password; however, you may choose to connect using a password by assigning a known password toopc
or by creating another user with a known password. See Managing User Accounts in Oracle Big Data Appliance Software User's Guide. -
root
The root administrator for the system. You do not have direct access to this account. To perform operations that require root user access, execute
sudo -s
as the
user. By default,opc
root
doesn’t require a password. -
oracle
An operating system and cluster user account that is used to run jobs on the cluster during the validation of the cluster. This account is used by the system and has a randomly generated password.