User Impersonation

Introduction

This topic provides details about the Gathr Impersonation feature for CDP 7.1.8 version.

Impersonation in Kerberized Cluster is a security feature that allows one user (the “superuser”) to perform actions on behalf of another user. This is typically used in multi-tenant environments where certain users have elevated privileges and can act as other users for specific tasks.

Prerequisites

Cloudera Manager Configuration

The admin is required to make the changes in Cloudera Manager.

The following configuration should be done under HDFS -> Configuration (core-site.xml) section:

Cloudera_impersonation

User Impersonation Permissions

Operation System users who need to impersonate should be created and have proper permissions.

Gathr Enable Impersonation

Using superuser go to Configuration -> Default and enable impersonation:

Impersonation_user_editable

Authentication

Pipeline Creation

Login with your user account. During inspection, the Service Keytabs will be used for user authentication.

enable_impersonation

Pipeline Submission

During runtime, the Service Keytabs will be used for user authentication.

pipeline_defination_impersonation

If you have any feedback on Gathr documentation, please email us!

← Default
Manage Connections →