MapR 5.1 is at End of Life (EOL) and no longer supported. Please see the latest documentation. This documentation is not being updated.

Home
5.1 Administration
This section contains administration information such as managing your cluster, data, users, jobs and security information such as configuring your security environment and auditing.
Security Guide
Security Overview
Describes the security features of the MapR Converged Data Platform.
Authorization in MapR
Describes how flexible authorization systems restrict a user's scope.

MapR 5.1 Documentation

5.1 Administration
This section contains administration information such as managing your cluster, data, users, jobs and security information such as configuring your security environment and auditing.
- Administrator Guide
- Security Guide
  - Security Overview
    Describes the security features of the MapR Converged Data Platform.
    - Authentication in MapR
      Provides information about MapR ticket, Kerberos, Pluggable Authentication Module (PAM) authentication.
    - Authorization in MapR
      Describes how flexible authorization systems restrict a user's scope.
    - Encryption Used by MapR
      Describes how encrypted data transmission protects communication paths.
    - Impersonation in MapR
      Describes how to give the mapr super user centralized control of the cluster.
    - Auditing in MapR
      Describes how auditing records valuable information about the cluster.
  - Security Architecture
    Describes the default security architecture and additional authentication and encryption capabilities.
  - Logging into a Secure Cluster
    Describes how to use tickets to access a secure MapR cluster.
  - Tickets and Certificates
    Describes how tickets and certificates authenticate users and servers to a cluster.
  - Getting Started with MapR Security
    Describes the two core scenarios that allow quick implementation of security features.
  - Configuring MapR Security
    Describes how to enable security features and configure the components on a secure cluster.
  - Auditing of Cluster Administration and Operations on Directories, Files, Tables, and Streams
    Describes how to process and use audit records to improve data analysis.

Authorization in MapR

Describes how flexible authorization systems restrict a user's scope.

Authorization restricts an authenticated user's capabilities on the system. Flexible authorization systems enable a system to grant a user a set of capabilities that enable the user to perform desired tasks, but prevents the use of any capabilities outside of that scope.

MapR supports Access Control Lists (ACLs) in a number of areas, including for regulating user privileges to the job queue and cluster. MapR also uses ACLs to control administrative access to volumes (administrative access is distinct from data access).

MapR also provides a more powerful authorization model known as Access Control Expressions. ACEs allow you to control access using powerful boolean logic expressions. ACEs can be used to control data access to MapR tables, files, directories, and volumes. The MapR file system also supports standard POSIX filesystem permission levels.

The Configuring MapR Security section contains procedures for setting up and modifying ACLs and ACEs for the cluster, the volumes on the cluster, the job queue, the MapR file system, and the natively stored MapR tables.