vpruthi/doc-exports
1
0
Fork 0
forked from docs/doc-exports
Code Pull Requests Activity
doc-exports/docs/mrs/component-operation-guide/mrs_01_1662.html
Yang, Tong 6182f91ba8 MRS component operation guide_normal 2.0.38.SP20 version 
Reviewed-by: Hasko, Vladimir <vladimir.hasko@t-systems.com>
Co-authored-by: Yang, Tong <yangtong2@huawei.com>
Co-committed-by: Yang, Tong <yangtong2@huawei.com>
2022-12-09 14:55:21 +00:00

70 lines
13 KiB
HTML
Raw Blame History

<a name="mrs_01_1662"></a><a name="mrs_01_1662"></a>
<h1 class="topictitle1">Creating an HDFS Role</h1>
<div id="body1595904092427"><div class="section" id="mrs_01_1662__sbc30082d821d4b1099fd200b9d875239"><h4 class="sectiontitle">Scenario</h4><p id="mrs_01_1662__aeed1d3ec23234cb2bcddc520171402b7">This section describes how to create and configure an HDFS role on FusionInsight Manager. The HDFS role is granted the rights to read, write, and execute HDFS directories or files.</p>
</div>
<p id="mrs_01_1662__afaf1cb58194f4a6f9784bae844bf7e06">A user has the complete permission on the created HDFS directories or files, that is, the user can directly read data from and write data to as well as authorize others to access the HDFS directories or files.</p>
<div class="note" id="mrs_01_1662__n29c1b1a00b05409db5744f05b20ff015"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><ul id="mrs_01_1662__ul2057514402121"><li id="mrs_01_1662__li779111418818">This section applies to MRS 3.<em id="mrs_01_1662__i81881437577">x</em> or later clusters.</li><li id="mrs_01_1662__li6576340181216">An HDFS role can be created only in security mode.</li><li id="mrs_01_1662__li105761840131216">If the current component uses Ranger for permission control, HDFS policies must be configured based on Ranger for permission management. For details, see <a href="mrs_01_1856.html">Adding a Ranger Access Permission Policy for HDFS</a>.</li></ul>
</div></div>
<div class="section" id="mrs_01_1662__seab5c17fe0114e658ff1740e828d76e7"><h4 class="sectiontitle">Prerequisites</h4><p id="mrs_01_1662__p144134955510">The system administrator has understood the service requirements.</p>
</div>
<div class="section" id="mrs_01_1662__s1f01f7c0c95a4fffa3b0ffdcaca38456"><h4 class="sectiontitle">Procedure</h4><ol id="mrs_01_1662__o6536c1fccc3f4a48abe1020fbb82a2b1"><li id="mrs_01_1662__l42a6593d7496460584caffa59ce793fa"><span>Log in to FusionInsight Manager, and choose <strong id="mrs_01_1662__b53822268533140">System</strong> &gt; <strong id="mrs_01_1662__b195654113733140">Permission</strong> &gt; <strong id="mrs_01_1662__b109389654133140">Role</strong>.</span></li><li id="mrs_01_1662__l48758865b7134c5180ee9cd098d62358"><span>On the displayed page, click <strong id="mrs_01_1662__b63252530933140">Create Role</strong> and fill in <strong id="mrs_01_1662__b178642582733140">Role Name</strong> and <strong id="mrs_01_1662__b156539806633140">Description</strong>.</span></li><li id="mrs_01_1662__l7186161e0bef46d2b0bbba48f47811cd"><span>Configure the resource permission. For details, see <a href="#mrs_01_1662__tc5a4f557e6144488a1ace112bb8db6ee">Table 1</a>.</span><p><p id="mrs_01_1662__ab8ae5d5a99854d20b55c4ec319ff2546"><strong id="mrs_01_1662__b53397793033140">File System</strong>: HDFS directory and file permission</p>
<p id="mrs_01_1662__a3f92db705bd44dd2b135ac2da23aa4e6">Common HDFS directories are as follows:</p>
<ul id="mrs_01_1662__ubc9bc86b5cd343649173588dea71264c"><li id="mrs_01_1662__ld0aede70227842368077462316c737af"><strong id="mrs_01_1662__b174407375233140">flume</strong>: Flume data storage directory</li><li id="mrs_01_1662__l84392a20a0454b8e836dd6f909c65dea"><strong id="mrs_01_1662__b111971777933140">hbase</strong>: HBase data storage directory</li><li id="mrs_01_1662__ld917dade795147cbbba7202cc8baaf38"><strong id="mrs_01_1662__b203533970533140">mr-history</strong>: MapReduce task information storage directory</li><li id="mrs_01_1662__l099d59d8db134c00b759a98073daa569"><strong id="mrs_01_1662__b68616848833140">tmp</strong>: temporary data storage directory</li><li id="mrs_01_1662__ld84c8596da274c05a0903739839ac2f8"><strong id="mrs_01_1662__b182849416733140">user</strong>: user data storage directory
<div class="tablenoborder"><a name="mrs_01_1662__tc5a4f557e6144488a1ace112bb8db6ee"></a><a name="tc5a4f557e6144488a1ace112bb8db6ee"></a><table cellpadding="4" cellspacing="0" summary="" id="mrs_01_1662__tc5a4f557e6144488a1ace112bb8db6ee" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Setting a role</caption><thead align="left"><tr id="mrs_01_1662__rf34d31ecea1e4bfa83b3c049c1dd41f8"><th align="left" class="cellrowborder" valign="top" width="37.41%" id="mcps1.3.5.2.3.2.3.5.2.2.3.1.1"><p id="mrs_01_1662__aadbfbbb39d0e4ba8a7478c93d9cad42e">Task</p>
</th>
<th align="left" class="cellrowborder" valign="top" width="62.59%" id="mcps1.3.5.2.3.2.3.5.2.2.3.1.2"><p id="mrs_01_1662__acf9e0c106c8d4c9c9cd716218e90bdae">Operation</p>
</th>
</tr>
</thead>
<tbody><tr id="mrs_01_1662__row1296983113534"><td class="cellrowborder" valign="top" width="37.41%" headers="mcps1.3.5.2.3.2.3.5.2.2.3.1.1 "><p id="mrs_01_1662__p57634569113541">Setting the HDFS administrator permission</p>
</td>
<td class="cellrowborder" valign="top" width="62.59%" headers="mcps1.3.5.2.3.2.3.5.2.2.3.1.2 "><p id="mrs_01_1662__p53793122113534">In the <strong id="mrs_01_1662__b27588875433140">Configure Resource Permission</strong> area, choose <em id="mrs_01_1662__i133079664033140">Name of the desired cluster</em> &gt; HDFS, and select <strong id="mrs_01_1662__b110985369833140">Cluster Admin Operations</strong>.</p>
<div class="note" id="mrs_01_1662__note15565386114138"><span class="notetitle"> NOTE: </span><div class="notebody"><p id="mrs_01_1662__p48391724115538">The setting takes effect after the HDFS service is restarted.</p>
</div></div>
</td>
</tr>
<tr id="mrs_01_1662__rf9e165cafb794eb68c0c4850bc7c9547"><td class="cellrowborder" valign="top" width="37.41%" headers="mcps1.3.5.2.3.2.3.5.2.2.3.1.1 "><p id="mrs_01_1662__a2474c3f6e8c34b6bb82e42bbdb74ea85">Setting the permission for users to check and recover HDFS</p>
</td>
<td class="cellrowborder" valign="top" width="62.59%" headers="mcps1.3.5.2.3.2.3.5.2.2.3.1.2 "><ol type="a" id="mrs_01_1662__o1e958b1ec20d47768de7dd002b059e50"><li id="mrs_01_1662__ld973a3178b874b2991a34724362edeaa">In the <strong id="mrs_01_1662__b117835610533140">Configure Resource Permission</strong> area, choose <em id="mrs_01_1662__i82816581733140">Name of the desired cluster</em> &gt; HDFS &gt; <strong id="mrs_01_1662__b10034037133140">File System</strong>.</li><li id="mrs_01_1662__l90a887e837424d2e9d0e4edb5bc29030">Locate the save path of specified directories or files on HDFS.</li><li id="mrs_01_1662__la261edb792114984b435ac93df993a6c">In the <strong id="mrs_01_1662__b102155236233140">Permission</strong> column of the specified directories or files, select <strong id="mrs_01_1662__b66831104833140">Read</strong> and <strong id="mrs_01_1662__b11725941133140">Execute</strong>.</li></ol>
</td>
</tr>
<tr id="mrs_01_1662__rac8abf6080f948f2837354b9ee1f2eae"><td class="cellrowborder" valign="top" width="37.41%" headers="mcps1.3.5.2.3.2.3.5.2.2.3.1.1 "><p id="mrs_01_1662__a44e5153fd70d40e39b0a15843dadcbc3">Setting the permission for users to read directories or files of other users</p>
</td>
<td class="cellrowborder" valign="top" width="62.59%" headers="mcps1.3.5.2.3.2.3.5.2.2.3.1.2 "><ol type="a" id="mrs_01_1662__o9a0ec8b0fd9e42d382778df75c50cbe1"><li id="mrs_01_1662__l9aece9da53d64ea598689e86defcd384">In the <strong id="mrs_01_1662__b108749812033140">Configure Resource Permission</strong> area, choose <em id="mrs_01_1662__i168733683733140">Name of the desired cluster</em> &gt; HDFS &gt; <strong id="mrs_01_1662__b1233426933140">File System</strong>.</li><li id="mrs_01_1662__l9241f800116446859abc5c9dc4186825">Locate the save path of specified directories or files on HDFS.</li><li id="mrs_01_1662__l6dfdbf89d41a4bd79c5d6fc664702669">In the <strong id="mrs_01_1662__b196781170933140">Permission</strong> column of the specified directories or files, select <strong id="mrs_01_1662__b206568084033140">Read</strong> and <strong id="mrs_01_1662__b208138321533140">Execute</strong>.</li></ol>
</td>
</tr>
<tr id="mrs_01_1662__r8fed251f76ed451c8aac26345e3c05eb"><td class="cellrowborder" valign="top" width="37.41%" headers="mcps1.3.5.2.3.2.3.5.2.2.3.1.1 "><p id="mrs_01_1662__a704526dfe1054cb2896940af773263dc">Setting the permission for users to write data to files of other users</p>
</td>
<td class="cellrowborder" valign="top" width="62.59%" headers="mcps1.3.5.2.3.2.3.5.2.2.3.1.2 "><ol type="a" id="mrs_01_1662__o4fa07111ada04dfc8e7c44b5a19c4834"><li id="mrs_01_1662__l12b368c90f184fd0abcc78cb3c2b141a">In the <strong id="mrs_01_1662__b105171368333140">Configure Resource Permission</strong> area, choose <em id="mrs_01_1662__i147424055233140">Name of the desired cluster</em> &gt; HDFS &gt; <strong id="mrs_01_1662__b99684533433140">File System</strong>.</li><li id="mrs_01_1662__l8d58d349fcd042c3b69dfcbe8788d741">Locate the save path of specified files on HDFS.</li><li id="mrs_01_1662__ld8bc3344800448908c36bc13c73993c8">In the <strong id="mrs_01_1662__b78266063233140">Permission</strong> column of the specified files, select <strong id="mrs_01_1662__b133109034933140">Write</strong> and <strong id="mrs_01_1662__b76661329333140">Execute</strong>.</li></ol>
</td>
</tr>
<tr id="mrs_01_1662__re017a0dbcf9e42efa1310e1106db7d31"><td class="cellrowborder" valign="top" width="37.41%" headers="mcps1.3.5.2.3.2.3.5.2.2.3.1.1 "><p id="mrs_01_1662__a21c768ba621b4b848ae8e2ef41a978a0">Setting the permission for users to create or delete sub-files or sub-directories in the directory of other users</p>
</td>
<td class="cellrowborder" valign="top" width="62.59%" headers="mcps1.3.5.2.3.2.3.5.2.2.3.1.2 "><ol type="a" id="mrs_01_1662__oe6b0d0e9c3a0463385039a4affb02ac7"><li id="mrs_01_1662__l5c40ffa5c0f4406f90e7a35767cff02c">In the <strong id="mrs_01_1662__b8748148233140">Configure Resource Permission</strong> area, choose <em id="mrs_01_1662__i100691328233140">Name of the desired cluster</em> &gt; HDFS &gt; <strong id="mrs_01_1662__b111247929233140">File System</strong>.</li><li id="mrs_01_1662__le564127e4e1b4a5e839c95dcd918a379">Locate the path where the specified directory is saved in the HDFS.</li><li id="mrs_01_1662__lcc818b93fd7f45ce8a4ffd6b3aae63a8">In the <strong id="mrs_01_1662__b107085745733140">Permission</strong> column of the specified directories, select <strong id="mrs_01_1662__b181933554033140">Write</strong> and <strong id="mrs_01_1662__b20604971433140">Execute</strong>.</li></ol>
</td>
</tr>
<tr id="mrs_01_1662__rd5217b631eb6421aa7c45644bc254a13"><td class="cellrowborder" valign="top" width="37.41%" headers="mcps1.3.5.2.3.2.3.5.2.2.3.1.1 "><p id="mrs_01_1662__a32d8391db46e4787a7d096da8a671898">Setting the permission for users to execute directories or files of other users</p>
</td>
<td class="cellrowborder" valign="top" width="62.59%" headers="mcps1.3.5.2.3.2.3.5.2.2.3.1.2 "><ol type="a" id="mrs_01_1662__o80b909ed22fd45f8baffe926ef71587f"><li id="mrs_01_1662__l05df1160fa23400f9ef32bb90046305e">In the <strong id="mrs_01_1662__b186277375033140">Configure Resource Permission</strong> area, choose <em id="mrs_01_1662__i174989994833140">Name of the desired cluster</em> &gt; HDFS &gt; <strong id="mrs_01_1662__b16336561733140">File System</strong>.</li><li id="mrs_01_1662__l42037a022e9c45618538549b593f7a3d">Locate the save path of specified directories or files on HDFS.</li><li id="mrs_01_1662__l2a448ca013bc4123ba33c29bc60b8ae1">In the <strong id="mrs_01_1662__b190847079733140">Permission</strong> column of the specified directories or files, select <strong id="mrs_01_1662__b2608949033140">Execute</strong>.</li></ol>
</td>
</tr>
<tr id="mrs_01_1662__r8e38f61d29dd4e1891c772dbac3b9553"><td class="cellrowborder" valign="top" width="37.41%" headers="mcps1.3.5.2.3.2.3.5.2.2.3.1.1 "><p id="mrs_01_1662__aa0f319c900db48d09482597f63c8c3a8">Setting the permission for allowing subdirectories to inherit all permissions of their parent directories</p>
</td>
<td class="cellrowborder" valign="top" width="62.59%" headers="mcps1.3.5.2.3.2.3.5.2.2.3.1.2 "><ol type="a" id="mrs_01_1662__o5ed1ea0602864bf69370bc42e1862a76"><li id="mrs_01_1662__l8f68db749be04f85834a14e4c37741b2">In the <strong id="mrs_01_1662__b149008476533140">Configure Resource Permission</strong> area, choose <em id="mrs_01_1662__i60885977033140">Name of the desired cluster</em> &gt; HDFS &gt; <strong id="mrs_01_1662__b84529042733140">File System</strong>.</li><li id="mrs_01_1662__lf516996aa2224b9e9341f8e4326c1a6e">Locate the save path of specified directories or files on HDFS.</li><li id="mrs_01_1662__l93b59f0c5d54426aa46fd67f66cf3910">In the <strong id="mrs_01_1662__b156759371033140">Permission</strong> column of the specified directories or files, select <strong id="mrs_01_1662__b64976689733140">Recursive</strong>.</li></ol>
</td>
</tr>
</tbody>
</table>
</div>
</li></ul>
</p></li><li id="mrs_01_1662__l85da2df4496c447ebe9958a68d8318e8"><span>Click <strong id="mrs_01_1662__b5868909833140">OK</strong>, and return to the <strong id="mrs_01_1662__b213691541333140">Role</strong> page.</span></li></ol>
</div>
</div>
<div>
<div class="familylinks">
<div class="parentlink"><strong>Parent topic:</strong> <a href="mrs_01_0790.html">Using HDFS</a></div>
</div>
</div>
View Git Blame Copy Permalink