Secure Impersonation on Datameer Without Super Group Requirement

Answered

Comments

1 comment

  • Konsta Danyliuk

    Hello Arturo.

    To configure Secure Impersonation on Datameer Without Super Group Requirement, one should leverage a new Cluster mode called Native Multi User. This allows enabling Datameer's new secure impersonation method that validates each individual user separately using the user's own Kerberos keytab.

    When one enables impersonation, all calls to the cluster (except several service cases) are being made on behalf of artifact's/job's owner, therefore it is required to provide to this user sufficient permissions to the cluster services.

    Here are sections of Datameer documentation that help you understand the differences between available Secure Impersonation models. But do not hesitate to ask further questions.

    1
    Comment actions Permalink

Please sign in to leave a comment.