MapR 5.1 is at End of Life (EOL) and no longer supported. Please see the latest documentation. This documentation is not being updated.

Home
5.1 Administration
This section contains administration information such as managing your cluster, data, users, jobs and security information such as configuring your security environment and auditing.
Security Guide
Auditing of Cluster Administration and Operations on Directories, Files, Tables, and Streams
Describes how to process and use audit records to improve data analysis.
Auditing of Operations on the Filesystem, Tables, and Streams
Provides instructions for using MapR auditing features.
Selective Auditing of MapR-FS, MapR-DB Table, and MapR Streams Operations

MapR 5.1 Documentation

5.1 Administration
This section contains administration information such as managing your cluster, data, users, jobs and security information such as configuring your security environment and auditing.
- Administrator Guide
- Security Guide
  - Security Overview
    Describes the security features of the MapR Converged Data Platform.
  - Security Architecture
    Describes the default security architecture and additional authentication and encryption capabilities.
  - Logging into a Secure Cluster
    Describes how to use tickets to access a secure MapR cluster.
  - Tickets and Certificates
    Describes how tickets and certificates authenticate users and servers to a cluster.
  - Getting Started with MapR Security
    Describes the two core scenarios that allow quick implementation of security features.
  - Configuring MapR Security
    Describes how to enable security features and configure the components on a secure cluster.
  - Auditing of Cluster Administration and Operations on Directories, Files, Tables, and Streams
    Describes how to process and use audit records to improve data analysis.
    - Prerequisites for Auditing
      Provides instructions for using MapR auditing features.
    - Enabling Auditing
    - Auditing of Activity Related to Cluster Administration
    - Auditing of Operations on the Filesystem, Tables, and Streams
      Provides instructions for using MapR auditing features.

Selective Auditing of MapR-FS, MapR-DB Table, and MapR Streams Operations

Administrators can specify filesystem, table, or stream operations to include or exclude from auditing. The operations that can be included or excluded from auditing are listed here.

Including or excluding specific operations from auditing requires running the maprcli command. You can specify the list of operations to include or exclude from auditing during volume creation using maprcli volume create command and afterwards using maprcli volume modify or maprcli volume audit command.

To:

Include operations for auditing, use the plus sign (+) before the operation.
Exclude operations from auditing, use the minus sign (-) before the operation.
NOTE: If the first operation in the list is to be excluded from auditing, it must be preceded by two minus (--) signs. Subsequent operations to exclude from auditing must be preceded by only a single minus (-) sign, whether or not the first operation was included (using a plus (+) sign) or excluded (using two minus (--) signs).

NOTE: If neither (plus (+) or minus (-)) sign is specified before an operation, the given operation is included for auditing.