This is documentation for MapR Version 5.0. You can also refer to MapR documentation for the latest release.

Skip to end of metadata
Go to start of metadata

MapR provides volumes as a way to organize data and manage cluster performance. For example, you might want to create a volume for each user, department, or project. You can then create a volume-level ACL that controls which users and groups have access to that volume, and what actions they may perform.

There are two ways to do this: from the MapR Control System (MCS) or from the command line.

From the MCS

  • For a new volume, click on the New Volume tab, as shown.

In the dialog box that opens, add a user or group as the Accountable Entity under Volume Setup.

In the Permissions pane, select permission levels from the pull-down menu next to each entry.

 

  • For an existing volume, click on Volumes in the navigation pane and select the checkbox next to the volume.

Next, click on the Modify Volume tab.

Select Properties from the dropdown menu.

Open the Permissions pane and click on Add Permission +. Add users or groups, then select permission levels.

From the Command Line

To create an ACL at the command line, use the acl set command to specify a list of authorized users (or groups) and the actions they are allowed to perform.

The syntax is:

Include spaces between multiple entries, such as a list of usernames and their associated permission levels (or actions).
Each allowed action has a permission code associated with it. The codes are explained below.

Permission Code

Allowed Action

dump

Dump or back up the volume

restore

Restore or mirror the volume

m

Modify the volume's properties

d

Delete the volume

aAdministrator (can edit and view ACLs, but cannot perform volume operations)

fc

Full control over the volume (this enables all volume-related administrative options with the exception of changing the volume ACLs)

Example Volume-level ACL

This example shows how to create an ACL for a volume named test-volume that allows full control over volume ACLs for user rjones. In addition, all users in the developers group are given permission to dump, restore, and modify volume properties.

  • No labels