Home
6.0 Administration
This section describes how to manage the nodes and services that make up a cluster.
Configuring Security
Describes how to configure MapR security and manage secure clusters.
Configuring Mapr Security
Provides usage information for frequently used security functionality, including Access Control Lists (ACLs), Access Control Expressions (ACEs), file permissions, and subnet whitelisting.
Getting Started with MapR Security
Describes two core scenarios that allow quick implementation of security features.

MapR 6.0 Documentation

6.0 Administration
This section describes how to manage the nodes and services that make up a cluster.
- Administering Users and Clusters
- Administering Nodes
- Administering Volumes
  This section provide information about how to organize and manage data using volumes, a unique feature of MapR clusters.
- Administering Files and Directories
- Administering Tables
  Administration of the MapR-DB is done primarily via the command line (maprcli) or with the MapR Control System (MCS). Regardless of whether the MapR-DB table is used for binary files or JSON documents, the same types of commands are used with slightly different parameter options. MapR-DB administration is associated with tables, columns and column families, and table regions.
- Administering Streams
- Administering MapR Gateways
  A MapR gateway mediates one-way communication between a source MapR cluster and a destination cluster. You can replicate MapR-DB tables (binary and JSON) and MapR-ES streams. MapR gateways also apply updates from JSON tables to their secondary indexes and propagate Change Data Capture (CDC) logs.
- Administering Services
- Monitoring the Cluster
  This section describes how to monitor the health and performance of a MapR cluster.
- Configuring Security
  Describes how to configure MapR security and manage secure clusters.
  - Configuring Mapr Security
    Provides usage information for frequently used security functionality, including Access Control Lists (ACLs), Access Control Expressions (ACEs), file permissions, and subnet whitelisting.
    - Getting Started with MapR Security
      Describes two core scenarios that allow quick implementation of security features.
    - Managing Encryption for MapR Core
      Provides information that allows you to use encryption across the MapR platform.
    - Configuring Authentication
      Provides information about MapR ticket, Kerberos, Pluggable Authentication Module (PAM) authentication.
    - Managing Access Controls
      Describes how to create, enable, and use ACLs and ACEs.
  - Managing Impersonation
    Provides instructions for enabling and using MapR impersonation features.
- Managing Secure Clusters
  Provides procedures that will enable you to use MapR clusters securely.
- Administering the MapR Data Access Gateway
  The MapR Data Access Gateway is a service that acts as a proxy and gateway for translating requests between lightweight client applications and the MapR cluster. This section describes considerations when upgrading the service, how to modify configuration settings, and how to administer and manage the service.
- Planning for High Availability
- Administrator's Reference
  This section contains in-depth reference information for the administrator.
- Troubleshooting Cluster Administration
- Best Practices for Backing Up MapR Information

Getting Started with MapR Security

Describes two core scenarios that allow quick implementation of security features.

MapR 6.0 introduced enhanced security settings that simplify the process of creating secure clusters. For a brief intro, see Built-in Security in MapR.

To set up an initial secure cluster for MapR Core using minimal security:

Enable wire-level security by running configure.sh.
See Enabling Wire-level Security.
Generate MapR user tickets to authenticate with your username and password.
See the maprlogin password command in Generating a MapR User Ticket.
See Generating a MapR User Ticket for more information.
Decide which Ecosystem components to secure and with which authentication method.
See the MapR Security Support Matrix.
Configure each Ecosystem component with the appropriate authentication method.
See the sections for individual Ecosystem components in the Ecosystem Components.
(Optional) Turn on auditing for the cluster and for directories that contain sensitive data.
See Enabling and Disabling Auditing of Cluster Administration and Enabling and Disabling Auditing of Data Access Operations for more information.
(Optional) Enable authorization using ACEs for files, tables, streams, or volumes and ACLs for administrative activities that can be performed on the cluster.
See Managing Access Control Expressions and Managing Access Control Lists for more information.
(Optional) Enable impersonation.
See Managing Impersonation for more information.

NOTE: If you wish to implement Ecosystem compenent security, see the sections for individual Ecosystem components in the Ecosystem Components and the MapR Security Support Matrix.

(Topic last modified: 2018-10-16)