Configure custom roles

Mikhail Serov
Contents

In some cases, the functionality of the built-in ADCM roles is not enough to grant the users sufficiently granular access. In this case, you can create a new role with appropriate permissions.

The process of creating a new role is described on the Create roles page.

Example

Suppose you need a role that only allows to run any check action on a cluster. To create this role, do the following:

  1. In the Create role window on the Roles tab enter Cluster action check as the role name and include the Cluster Action: Check and Service Action: Check permissions.

  2. Click Create.

    The Cluster action check role
    The Cluster action check role

To implement the Cluster action check role, create a new policy by following the steps below:

  1. In the Create new policy window on the Policies tab enter Action check as a policy name.

  2. Select the user user to be affected by this policy.

  3. Click Next.

    The first step of creating the Action check policy
    The first step of creating the Action check policy

  4. Select the Hive service and the ADH cluster for the Action check policy.

  5. Click Create.

    The second step of creating the Action check policy
    The second step of creating the Action check policy

After the Action check policy is created, the user is able to run check actions for the ADH cluster and the Hive service.

If the Service Action: Check permission was not included into the Cluster action check role, you will not be able to select any service when creating the Action check policy. The objects available for selection when creating a new policy depend on the permissions included in the role a new policy is based on.

Found a mistake? Seleсt text and press Ctrl+Enter to report it