Database Reference
In-Depth Information
Authorization in Apache Hadoop
With authentication, we have validated the user. The next step in the security is to imple-
ment Service Level Authorization controls for users. Service Level Authorization sets the
permissions for users to the different objects in the cluster. These permissions employ con-
trols on the different actions that a user could perform, for example, submitting a MapRe-
duce job, accessing a file on HDFS, and so on.
Service Level Authorization in Hadoop is done by defining an
access control list
(
ACL
).
The ACLs allow the administrator to define the list of users that have permissions to the
different services in Hadoop.
