HPE Ezmeral Data Fabric 6.1.x is In Maintenance and transitions to "End of Maintenance" in June 2024. Please see the latest documentation.

About MapR 6.1
This site contains the main documentation for Version 6.1 of the MapR Converged Data Platform, including installation, configuration, administration, and reference information.
6.1 Installation
This section contains information about installing and upgrading MapR software. It also contains information about how to migrate data and applications from an Apache Hadoop cluster to a MapR cluster.
6.1 MapR Data Platform
MapR Data Platform is the industry-leading data platform for AI and analytics that solves enterprise business needs.
6.1 Administration
This section describes how to manage the nodes and services that make up a cluster.
- Administering Users and Clusters
  Lists topics that help manage a MapR cluster.
- Administering Nodes
  Provides a synopsis of managing nodes in a cluster.
- Administering Volumes
  This section provide information about how to organize and manage data using volumes, a unique feature of MapR clusters.
  - Managing Data with Volumes
    Provides an overview of how to manage volume data.
    - Viewing the List of Volumes
      Explains how to view the list of volumes either through the Control Panel or the CLI.
    - Creating a Volume
      Describes volume types, and illustrates how to create volumes using either the Control System, CLI, or the REST API.
    - Viewing Volume Information
      Describes how to view volume information using either the Control System or the CLI.
    - Removing Volumes
      Explains how to remove a volume using either the Control System or the CLI.
    - Modifying Multiple Volumes
      Explains how to modify volumes using either the Control System or the CLI.
    - Modifying a Volume
      Describes how to edit a volume using either the Control System or the CLI.
    - Renaming a Volume
      Describes how to rename a volume using the Control System, CLI or the REST API.
    - Specifying Volume Inheritance Using the CLI
      Lists volume properties that can be inherited from other volumes.
    - Setting Data ACEs
      Describes how to set ACEs using both the GUI and the CLI.
    - Changing or Setting Mount Information for a Volume
      Describes how to set the mount path for a volume using either the Control System, the CLI, or the REST API.
    - Changing Volume Type
    - Selecting a Replication Type for High Availability
      Describes replication types for high-availability clusters, and the tradeoffs of using them.
    - Setting Quota for a Volume
      Describes how to set disk quotas for a volume using either the Control System, the CLI or the REST API.
    - Migrating a Volume off a Node Using the CLI
    - Setting Up Volume Topology
      Specifies how to use volume topology to place volumes on specific racks, nodes, or groups of nodes.
    - Viewing Active Volume Alarms
      Describes how to view volume alarms using the Control System and the CLI.
    - Working with Mirror Volumes
    - Enabling and Restricting Access to Tenant Volume and Data
      Describes how to restrict access to tenant volumes in a multi-tenant environment.
    - Working with Tiered Volumes
    - Using Volume Links for Read and Write Operations
  - Managing Snapshots
    This section provide information about managing snapshots.
  - Managing User Disk Usage
  - Managing Schedules
  - Managing Tiers
  - Managing Storage Policies
- Administering Files and Directories
- Administering Tables
  Administration of the MapR Database is done primarily via the command line (maprcli) or with the Managed Control System (MCS). Regardless of whether the MapR Database table is used for binary files or JSON documents, the same types of commands are used with slightly different parameter options. MapR Database administration is associated with tables, columns and column families, and table regions.
- Administering Streams
- Administering MapR Gateways
  A MapR gateway mediates one-way communication between a source MapR cluster and a destination cluster. You can replicate MapR Database tables (binary and JSON) and MapR Event Store For Apache Kafka streams. MapR gateways also apply updates from JSON tables to their secondary indexes and propagate Change Data Capture (CDC) logs.
- Administering Services
- Monitoring the Cluster
  This section describes how to monitor the health and performance of a MapR cluster.
- Configuring Security
  Describes how to configure security and manage secure clusters.
- Managing Secure Clusters
  Provides procedures that will enable you to use MapR clusters securely.
- Administering the MapR Data Access Gateway
  The MapR Data Access Gateway is a service that acts as a proxy and gateway for translating requests between lightweight client applications and the MapR cluster. This section describes considerations when upgrading the service, how to modify configuration settings, and how to administer and manage the service.
- Planning for High Availability
- Administrator's Reference
  This section contains in-depth reference information for the administrator.
- Troubleshooting Cluster Administration
  Lists the common errors and their solutions.
- Best Practices for Backing Up MapR Information
  Lists the best practices and performance considerations to follow when backing up MapR information.
6.1 Development
This section contains information related to application development for Ezmeral ecosystem components and MapR Data Platform products, including the file system, Database (Key-Value and JSON), and Event Streams.
Other Docs
This section contains release-independent information, including: MapR Installer documentation, Ecosystem release notes, interoperability matrices, security vulnerabilities, and links to other MapR version documentation.
Glossary
Definitions for commonly used terms in MapR Converged Data Platform environments.

Enabling and Restricting Access to Tenant Volume and Data

Describes how to restrict access to tenant volumes in a multi-tenant environment.

About this task

In a multi-tenant environment, the tenant volume (share) can be accessed by all users on the tenant instance by default. To restrict access to specific users and/or groups:

Procedure

Log in to the cluster as the cluster administrator and set Access Control Expression (ACE)s on the volume using the volume commands.
For example:
```
/opt/mapr/bin/maprcli volume modify -name <volumename> -readAce "u:<user>|g:<group>" -writeAce "u:<user>|g:<group>"
```
Here, value for <user> must be the UID of the user and value of <group> must be GID of the group on the tenant host.
TIP For more information, see maprcli volume modify command.
Log in as the tenant admin and set permissions for data access.
You can set permissions using:
- Linux commands such as chmod, chown, and so on.
- ACEs, which can be set on files and directories in the volume. For more information, see Enabling Volume, Directory, and File Authorizations with ACEs.