Cloudera Enterprise 6.0 Beta | Other versions
User Privilege Requirements for Package-based Installations and Upgrades of CDH
The following sections describe the user privilege requirements for package-based installation and upgrades of CDH with and without Cloudera Manager. These requirements are standard UNIX system requirements for installing and managing packages and services.
- Permission Requirements for Package-Based CDH Installation with Cloudera Manager
- Permission Requirements for Package-Based CDH Installation without Cloudera Manager
- sudo Commands Run by Cloudera Manager
Permission Requirements for Package-Based CDH Installation with Cloudera Manager
Important: Unless otherwise noted, when root or sudo access is required, using another system (such as PowerBroker) that provides root/sudo privileges is acceptable.| Task | Permissions Required |
|---|---|
| Install Cloudera Manager Server | root or sudo access to the host on which you are installing Cloudera Manager Server. |
| Start, stop, or restart Cloudera Manager Server using the service or systemctl utilities | root or sudo access to the Cloudera Manager Server host. The service runs as the cloudera-scm user by default. |
| Install CDH components using Cloudera Manager | One of the following, configured during initial installation of Cloudera Manager:
|
| Install Cloudera Manager Agent using Cloudera Manager | One of the following, configured during initial installation of Cloudera Manager:
|
| Automatically start Cloudera Manager Agent process | If single user mode is not enabled,
access to the root user account during runtime, through one of the following scenarios:
|
| Manually start, stop, or restart Cloudera Manager Agent process | If single user mode is not enabled,
root or sudo access.
This permission requirement ensures that services managed by the Cloudera Manager Agent can run as the appropriate user (such as the hdfs user for the HDFS service). Running commands within Cloudera Manager on a CDH service does not require root or sudo access, because the action is handled by the Cloudera Manager Agent, which is already running as the root user. |
Permission Requirements for Package-Based CDH Installation without Cloudera Manager
| Task | Permissions Required |
|---|---|
| Install CDH components | root or sudo access for installing any RPM-based package, and service startup/shutdown. Passwordless SSH as the root user is not required. |
| Upgrade a previously installed CDH package | root or sudo access. Passwordless SSH as the root user is not required. |
| Install or upgrade hosts in a CDH cluster | Passwordless SSH as root, so that scripts can be used to help manage the CDH package and configuration across the cluster. |
| Change the CDH package (for example: RPM upgrades, configuration changes that require CDH service restarts, addition of CDH services). | root or sudo access to restart any host impacted by the change, which could cause a restart of a given service on each host in the cluster. |
| Start, stop, or restart a CDH service | root or sudo access |
sudo Commands Run by Cloudera Manager
If you want to configure specific sudo access for the Cloudera Manager user (cloudera-scm by default), you can use the following list to do so.
The sudo commands run by Cloudera Manager are:
- yum (RHEL/CentOS/Oracle)
- zypper (SLES)
- apt-get (Debian/Ubuntu)
- apt-key (Debian/Ubuntu)
- sed
- service
- /sbin/chkconfig (RHEL/CentOS/Oracle)
- /usr/sbin/update-rc.d (Debian/Ubuntu)
- id
- rm
- mv
- chown
- install
Page generated March 7, 2018.
| << Storage Space Planning for Cloudera Manager | ©2016 Cloudera, Inc. All rights reserved | Single User Mode Overview >> |
| Terms and Conditions Privacy Policy |