1. Using Oracle Big Data Manager
  2. Get Started with Oracle Big Data Manager
  3. Manage Oracle Big Data Manager Users, Roles, and Access

2.3 Manage Oracle Big Data Manager Users, Roles, and Access

An administrator creates Oracle Big Data Manager users on the command line. Once they’ve been created, you can edit user details and manage access in the Oracle Big Data Manager console.

Note:

By default, the bigdatamgr user is created and granted the administrator role in Oracle Big Data Manager. This user should be used to grant roles and register storage providers. The bigdatamgr user has the same password that was assigned to the Cloudera Manager administrator in the Create Instance wizard when the cluster was created.

2.3.1 Add Oracle Big Data Manager Users

An administrator creates Oracle Big Data Manager users on the command line. Once they’ve been created, you can edit user details and manage access in the Oracle Big Data Manager console.

To add a user:
  1. Open a command shell and use SSH to connect to a cluster node as the bigdatamgr user (or another user with administration privileges).
  2. Open a root shell: 
    su -
  3. Export the new user’s password to a password file:
    echo user_password > user_password_file
chmod 600 user_password_file

    where:

    • user_password is the password for the new user.

    • user_password_file is the password file for the new user. This file must have permissions 600.

    Note:

    It is a safer practice to define the user password as an environment variable and then pass that value to the command. When the value is passed as the value of the environment variable, the actual value won't be visible in the bash history. In this case, use the following, instead of the commands listed above.

    echo ${USER_PASSWORD}>${USER_PASSWORD_FILE}
chmod 600 ${USER_PASSWORD_FILE}

    where:

    • USER_PASSWORD is the environment variable containing the value of the password for the new user. The name of the environment variable can be any valid environment variable name.

    • USER_PASSWORD_FILE is the environment variable containing the value of the password file for the new user. The name of the environment variable can be any valid environment variable name. This file has to have permissions 600.

  4. On the node where Oracle Big Data Manager runs, add the user and create a home directory for the user in the cluster’s HDFS file system:
    /usr/bin/bdm-add-user --create-hdfs-home new_user user_password_file

    where new_user is the new user name.

    Note:

    By default, Oracle Big Data Manager is started on port 8890 on the same node that hosts Cloudera Manager.
  5. On the node where Oracle Big Data Manager runs, enter the following command to restart Oracle Big Data Manager. This reloads the user configuration.
    service bigdatamanager restart

2.3.2 Edit User Details and Manage Roles

A user with administrator privileges can edit user details and manage roles in the Oracle Big Data Manager console.

Note:

User accounts can't be permanently deleted but they can be disabled. Users with disabled accounts won't be able to sign in to Oracle Big Data Manager.
To access and modify user details and manage user roles:
  1. Sign in to the Oracle Big Data Manager console as the bigdatamgr user, or as another user with administrator privileges.
  2. Click the Administration tab at the top of the page, and then click Users on the left side of the page to show the list of users that have been added.
  3. Click the Menu menu in the row for the user, and then select Edit. To disable the user account, select Disable account.
  4. Edit user details as desired. Click inside the Roles field to see and select from available roles.

The Roles page on the Administration tab lists the roles available for users and the permissions associated with each. The permissions for each role are configured by default in Oracle Big Data Manager and cannot be changed.

2.3.3 Control Access to Specific Providers

A user with administrator privileges can control access to storage providers.

Note:

When you create a new cluster, the bigdatamgr user is automatically created within the cluster and granted the Oracle Big Data Manager Administrator role.

To control access to storage providers:

  1. Sign in to the Oracle Big Data Manager console as the bigdatamgr user, or another user with administrator privileges.
  2. Click the Administration tab at the top of the page, and then click the Storage providers tab on the left side of the page to show a list of registered storage providers.
  3. Click the menu icon to the right of the storage provider you are providing access to, and select Manage users.
  4. Use the arrows to move users from the left panel to the right panel to create an access list of users who will be able to see that provider in the web application. This doesn’t give Write access to the storage. Users must have appropriate permissions to work with data in the provider.