yexinru/doc-exports
1
0
Fork 0
forked from docs/doc-exports
Code Pull Requests Activity
Files
a41a4e0331fbc0beff63bb28fa59228cc9a751df
doc-exports/docs/mrs/umn/admin_guide_000103.html
Yang, Tong 2195db241c MRS UMN 20231220 version update 
Reviewed-by: Pruthi, Vineet <vineet.pruthi@t-systems.com>
Reviewed-by: Rechenburg, Matthias <matthias.rechenburg@t-systems.com>
Co-authored-by: Yang, Tong <yangtong2@huawei.com>
Co-committed-by: Yang, Tong <yangtong2@huawei.com>
2024-05-16 09:40:21 +00:00

75 lines
12 KiB
HTML
Raw Blame History

<a name="admin_guide_000103"></a><a name="admin_guide_000103"></a>
<h1 class="topictitle1">Adding a User and Binding the User to a Tenant Role</h1>
<div id="body8662426"><div class="section" id="admin_guide_000103__en-us_topic_0193195962_s20a8a0121df9406faa47abdd70d8ff2f"><h4 class="sectiontitle">Scenario</h4><p id="admin_guide_000103__en-us_topic_0193195962_a15c7913f67884ed99bb51e7e3e612d45">A newly created tenant cannot directly log in to the cluster to access resources. You need to add a user for the tenant on <span id="admin_guide_000103__text15946118176">MRS</span> Manager and bind the user to the role of the tenant to assign operation permissions to the user.</p>
</div>
<div class="section" id="admin_guide_000103__en-us_topic_0193195962_s1dd29d92df8643ce8d015555cd80537b"><h4 class="sectiontitle">Prerequisites</h4><p id="admin_guide_000103__en-us_topic_0193195962_p132514911714">You have clarified service requirements and created a tenant.</p>
</div>
<div class="section" id="admin_guide_000103__en-us_topic_0193195962_section3595635151617"><h4 class="sectiontitle">Procedure</h4><ol id="admin_guide_000103__en-us_topic_0193195962_o1a74e659b6904a899834102b51204e1a"><li id="admin_guide_000103__en-us_topic_0193195962_ldf180ea061664d90acfb2481b1704ce7"><span>Log in to <span id="admin_guide_000103__text18510195064615">MRS</span> Manager and choose <strong id="admin_guide_000103__b2649104115163">System</strong> &gt; <strong id="admin_guide_000103__b478915461166">Permission</strong> &gt; <strong id="admin_guide_000103__b18822476164">User</strong>.</span></li><li id="admin_guide_000103__en-us_topic_0193195962_l9ff8d5aee4624937889c66cd3aae3a9b"><span>If you want to add a user to the system, click <strong id="admin_guide_000103__b650543241718">Create</strong>.</span><p><p id="admin_guide_000103__en-us_topic_0193195962_af73f0dd2b37c41c588ddfa935c19e6f4">If you want to bind tenant roles to an existing user in the system, locate the row of the user and click <strong id="admin_guide_000103__b026401412415">Modify</strong> in the <strong id="admin_guide_000103__b228183215247">Operation</strong> column.</p>
<div class="p" id="admin_guide_000103__en-us_topic_0193195962_p14889113691616">Set user attributes according to <a href="#admin_guide_000103__en-us_topic_0193195962_t2b6451d372c44135bf8473b6b2dc0fd4">Table 1</a>.
<div class="tablenoborder"><a name="admin_guide_000103__en-us_topic_0193195962_t2b6451d372c44135bf8473b6b2dc0fd4"></a><a name="en-us_topic_0193195962_t2b6451d372c44135bf8473b6b2dc0fd4"></a><table cellpadding="4" cellspacing="0" summary="" id="admin_guide_000103__en-us_topic_0193195962_t2b6451d372c44135bf8473b6b2dc0fd4" frame="border" border="1" rules="all"><caption><b>Table 1 </b>User parameters</caption><thead align="left"><tr id="admin_guide_000103__en-us_topic_0193195962_rd95158ad4fa6418fa1cb00232546e217"><th align="left" class="cellrowborder" valign="top" width="32.32%" id="mcps1.3.3.2.2.2.2.2.2.3.1.1"><p id="admin_guide_000103__en-us_topic_0193195962_af4b0fd04dc744b5e9f2f906ec9c78728">Parameter</p>
</th>
<th align="left" class="cellrowborder" valign="top" width="67.67999999999999%" id="mcps1.3.3.2.2.2.2.2.2.3.1.2"><p id="admin_guide_000103__en-us_topic_0193195962_a95d75e73a1994c60afea1ed4ef47cbd0">Description</p>
</th>
</tr>
</thead>
<tbody><tr id="admin_guide_000103__en-us_topic_0193195962_r931bd1d4508c44318fa1a30b0e7066eb"><td class="cellrowborder" valign="top" width="32.32%" headers="mcps1.3.3.2.2.2.2.2.2.3.1.1 "><p id="admin_guide_000103__en-us_topic_0193195962_ae2104bea496343ac94b5e4c75166a650">Username</p>
</td>
<td class="cellrowborder" valign="top" width="67.67999999999999%" headers="mcps1.3.3.2.2.2.2.2.2.3.1.2 "><p id="admin_guide_000103__en-us_topic_0193195962_a3cb0008f5392449bb3f059356d87c791">Indicates the current username. The value contains 3 to 32 characters, including digits, letters, underscores (_), hyphens (-), and spaces.</p>
<ul id="admin_guide_000103__en-us_topic_0193195962_u4ea54b7b0a96415887b69f80ba7849e1"><li id="admin_guide_000103__en-us_topic_0193195962_lf4545b0bc3e64288a262d9be3c9f7418">The username cannot be the same as the OS username of any node in the cluster. Otherwise, the user cannot be used.</li><li id="admin_guide_000103__en-us_topic_0193195962_la4467a3316154234b430af4e3ea0b768">A username that differs only in alphabetic case from an existing username is not allowed. For example, if <strong id="admin_guide_000103__b151804746611340">User1</strong> has been created, you cannot create <strong id="admin_guide_000103__b196459615711340">user1</strong>. Enter the correct username when using <strong id="admin_guide_000103__b338474674020">User1</strong>.</li></ul>
</td>
</tr>
<tr id="admin_guide_000103__en-us_topic_0193195962_r93930b1268934781ae06818235d2717f"><td class="cellrowborder" valign="top" width="32.32%" headers="mcps1.3.3.2.2.2.2.2.2.3.1.1 "><p id="admin_guide_000103__en-us_topic_0193195962_afb8751c5ca5a4cce811ed3a5a0da8892">User Type</p>
</td>
<td class="cellrowborder" valign="top" width="67.67999999999999%" headers="mcps1.3.3.2.2.2.2.2.2.3.1.2 "><p id="admin_guide_000103__en-us_topic_0193195962_a5abf1397e8a44a7bb8a5ba678bcbbdf0">The options are <strong id="admin_guide_000103__b1164922464210">Human-Machine</strong> and <strong id="admin_guide_000103__b19263142984215">Machine-Machine</strong>.</p>
<ul id="admin_guide_000103__en-us_topic_0193195962_u7806529fb2094f608d5795bba1fb32b6"><li id="admin_guide_000103__en-us_topic_0193195962_lb0b75de66ee448b2aeeec744d2ae1724"><strong id="admin_guide_000103__b448121564311">Human-Machine</strong> user: used for <span id="admin_guide_000103__text1576214524468">MRS</span> Manager O&amp;M and component client operations. If you select this option, set both <strong id="admin_guide_000103__b197045280611340">Password</strong> and <strong id="admin_guide_000103__b68215720411340">Confirm Password</strong> accordingly.</li><li id="admin_guide_000103__en-us_topic_0193195962_le16430fd51d04f668768fbee36d14699"><strong id="admin_guide_000103__b149646296911340">Machine-Machine</strong> user: used for application development. If you select this option, the password is randomly generated.</li></ul>
</td>
</tr>
<tr id="admin_guide_000103__en-us_topic_0193195962_r56c85f5b347948fca612029c372bf4b2"><td class="cellrowborder" valign="top" width="32.32%" headers="mcps1.3.3.2.2.2.2.2.2.3.1.1 "><p id="admin_guide_000103__en-us_topic_0193195962_a60010717a0284a0fb847237291f8f4d2">Password</p>
</td>
<td class="cellrowborder" valign="top" width="67.67999999999999%" headers="mcps1.3.3.2.2.2.2.2.2.3.1.2 "><p id="admin_guide_000103__en-us_topic_0193195962_ac5672385cc7f47a0804dcfa1561780d0">This parameter is mandatory if <strong id="admin_guide_000103__b162301655469">User Type</strong> is set to <strong id="admin_guide_000103__b67049774612">Human-Machine</strong>.</p>
<p id="admin_guide_000103__en-us_topic_0193195962_af2f26a0607f84bdfb60cf9434cffc5ae">The password must contain 8 to 64 characters of at least four types of the following: uppercase letters, lowercase letters, digits, special characters, and spaces. The password cannot be the username or the username spelled backwards.</p>
</td>
</tr>
<tr id="admin_guide_000103__en-us_topic_0193195962_ra616a328873147e499b1890f00885aa9"><td class="cellrowborder" valign="top" width="32.32%" headers="mcps1.3.3.2.2.2.2.2.2.3.1.1 "><p id="admin_guide_000103__en-us_topic_0193195962_ae2eabe2b51d6491f9f28792e16ec6926">Confirm Password</p>
</td>
<td class="cellrowborder" valign="top" width="67.67999999999999%" headers="mcps1.3.3.2.2.2.2.2.2.3.1.2 "><p id="admin_guide_000103__en-us_topic_0193195962_a4625b155237d4fe3bff0fb9367b72c42">Enter the password again.</p>
</td>
</tr>
<tr id="admin_guide_000103__en-us_topic_0193195962_rf6c318efe2824a0cb7984823e499dad8"><td class="cellrowborder" valign="top" width="32.32%" headers="mcps1.3.3.2.2.2.2.2.2.3.1.1 "><p id="admin_guide_000103__en-us_topic_0193195962_a33f03798581f4a4ca80f0a40eb00904d">User Group</p>
</td>
<td class="cellrowborder" valign="top" width="67.67999999999999%" headers="mcps1.3.3.2.2.2.2.2.2.3.1.2 "><p id="admin_guide_000103__en-us_topic_0193195962_a89aec471d25c4865a0ceac9364a47536">In the <strong id="admin_guide_000103__b33923214411340">User Group</strong> area, click <strong id="admin_guide_000103__b61503575611340">Add</strong> and select user groups to add the user to the groups.</p>
<ul id="admin_guide_000103__en-us_topic_0193195962_u59098241383840099f09bb3d4172ccfe"><li id="admin_guide_000103__en-us_topic_0193195962_ldf1cd3b2dfd84cf9965a39d2717b5b7b">If roles have been added to the user groups, the user can be granted the permissions of the roles.</li><li id="admin_guide_000103__en-us_topic_0193195962_la84afc4c126f43ee8396622b9cba72ea">For example, add the user to the Hive user group to assign Hive permissions to the user.</li></ul>
</td>
</tr>
<tr id="admin_guide_000103__en-us_topic_0193195962_rdb23582e05cc48a089c4ed944776b5e1"><td class="cellrowborder" valign="top" width="32.32%" headers="mcps1.3.3.2.2.2.2.2.2.3.1.1 "><p id="admin_guide_000103__en-us_topic_0193195962_a6569fa83c9d442e0af29283b0af244ee">Primary Group</p>
</td>
<td class="cellrowborder" valign="top" width="67.67999999999999%" headers="mcps1.3.3.2.2.2.2.2.2.3.1.2 "><p id="admin_guide_000103__en-us_topic_0193195962_acaffe54b8c5d4953bf52f0457b58c2b0">Select a group as the primary group for the user to create directories and files. The drop-down list contains all groups selected in <strong id="admin_guide_000103__b6847342115116">User Group</strong>.</p>
</td>
</tr>
<tr id="admin_guide_000103__en-us_topic_0193195962_row8253141818116"><td class="cellrowborder" valign="top" width="32.32%" headers="mcps1.3.3.2.2.2.2.2.2.3.1.1 "><p id="admin_guide_000103__en-us_topic_0193195962_p172530181415">Role</p>
</td>
<td class="cellrowborder" valign="top" width="67.67999999999999%" headers="mcps1.3.3.2.2.2.2.2.2.3.1.2 "><p id="admin_guide_000103__en-us_topic_0193195962_p1625351810119">Click <strong id="admin_guide_000103__b914511545218">Add</strong> to bind a tenant role to the user.</p>
<div class="note" id="admin_guide_000103__en-us_topic_0193195962_note169131545511"><span class="notetitle"> NOTE: </span><div class="notebody"><ul id="admin_guide_000103__ul1318124919107"><li id="admin_guide_000103__li13318949161011">If a user wants to use the resources of tenant <strong id="admin_guide_000103__b27432473522">tenant1</strong> and to add or delete sub-tenants for <strong id="admin_guide_000103__b1744916269535">tenant1</strong>, the user must be bound to both the <strong id="admin_guide_000103__b410183545318">Manager_tenant</strong> and <strong id="admin_guide_000103__b37761827185220">tenant1_</strong><em id="admin_guide_000103__i18776172715217">Cluster ID</em> roles.</li><li id="admin_guide_000103__li631874920104">If the tenant has been associated with the HBase service and Ranger authentication is enabled for the cluster, you need to configure the HBase execution permissions on the Ranger page.</li></ul>
</div></div>
</td>
</tr>
<tr id="admin_guide_000103__en-us_topic_0193195962_row427114316228"><td class="cellrowborder" valign="top" width="32.32%" headers="mcps1.3.3.2.2.2.2.2.2.3.1.1 "><p id="admin_guide_000103__en-us_topic_0193195962_p3271134382219">Description</p>
</td>
<td class="cellrowborder" valign="top" width="67.67999999999999%" headers="mcps1.3.3.2.2.2.2.2.2.3.1.2 "><p id="admin_guide_000103__en-us_topic_0193195962_p12271943132212">Indicates the description of the current user.</p>
</td>
</tr>
</tbody>
</table>
</div>
</div>
</p></li><li id="admin_guide_000103__en-us_topic_0193195962_lf1e8da6a2a9c4d73a1ec87662b004688"><span>Click <strong id="admin_guide_000103__b83561224135413">OK</strong>.</span></li></ol>
</div>
</div>
<div>
<div class="familylinks">
<div class="parentlink"><strong>Parent topic:</strong> <a href="admin_guide_000100.html">Creating Tenants</a></div>
</div>
</div>
View Git Blame Copy Permalink