Oracle Cloud Infrastructure Documentation

Managing Users and Permissions

An administrator manages users and permissions. Permissions determine which users can perform which actions in Big Data Studio, such as create notebooks, clone and export notebooks, create graphs, and so on. An administrator creates users and assigns permissions to them.

Creating and Deleting Users

Big Data Studio users cannot be created or deleted from the user interface. An administrator must perform these tasks manually from the command line.

To perform this action, you must have access rights on the cluster through the operating system.

To create and delete a user:

  1. Connect as opc user to the utility node where Big Data Studio resides (the second utility node of an HA (highly-available) cluster, or the first and only utility node of a non-HA cluster).
  2. Change to root user:

    sudo su

  3. As root, cd to this location:

    /opt/oracle/datastudio/Authenticator/

  4. Run the following commands:

    • To create a user:

      java -jar authenticator.jar create-ds-user new_user

      Where new_user is the user name.

      Enter the password for the user when prompted (the password won't be displayed as you're typing it), and then enter the role for the user. Valid roles are admin and user. The guest role isn't used in this release.

    • To delete a user:

      java -jar authenticator.jar delete-ds-user user_name

      Where user_name is the user name.

After a user is created, the user is listed on the Permissions page in the Big Data Studio web UI. An administrator uses this page to configure permissions that determine what the user can and cannot do in the application. See Configuring Permissions for Users.

Configuring Permissions for Users

An administrator configures permissions for Big Data Studio users. Permissions are configured by adding a user to a group and setting permissions for the group. Users inherit the permissions of all groups they're in.

Note the following regarding roles:

  • The admin user (datastudio) is automatically assigned the admin role. The admin user is created by default, and can create other admin users.

  • Users can be created with either the admin role or the user role. The guest role is not used in this release.

  • Role assignments can't be changed for any user. There's no need to create new roles because you won't be able to assign the new role to a user.

  • Roles are preconfigured with default permissions. You can change the permissions associated with each role by selecting or deselecting the desired permissions and saving your changes. Note that group permissions override role permissions.

To configure permissions for a user:

  1. Access the notebook application. See Accessing Big Data Studio.
  2. Click the Permissions icon on the left.

    The Permissions page displays. You can view users, add users to existing groups, create new groups, and view and configure permissions for groups. You can also configure permissions templates to simplify applying multiple permissions.

  3. Add a user to a group by selecting the Update User icon for the user and specifying a group. The user is added to the group and inherits the group's permissions. If no groups exist, create a group and then perform this step.
  4. Add or remove permissions for a group by selecting or deselecting the desired permissions and saving your changes.