Users, Groups, and Roles

Dremio's user and group management has two modes: Internal (default) and LDAP.

Internal

Dremio manages users. Users are configured through the UI under Admin > Users. Groups are not available in this mode.

LDAP

Users and groups are managed by external LDAP server.

Roles

By default, everyone is given the User role. Users and groups can be assigned to be Administrators in the UI under Admin > Administrators.

Add Administrators by their usernames or group names on Admin > Administrators.

User

Users can:

  • Create, edit, and delete spaces
  • Create, edit, and delete virtual datasets
  • Query or edit formatting of physical datasets
  • Query or edit virtual datasets
  • Upload files to home space
  • See their own jobs

Administrator

Administrators can:

  • Create, edit, and delete all sources and spaces
  • Query and edit formatting of all physical datasets (except for ones in other users' home spaces)
  • Query and edit all virtual datasets (except for ones in other users' home spaces)
  • See all jobs
  • Manage:
    • Accelerations
    • Node Activity
    • Users (only available in Internal mode)
    • Provisioning
    • Administrators
    • Cluster Settings

Customizing the user role

There are a few options that allow administrators to configure user privileges globally:

Advanced Option Description
ui.upload.allow Allow users to upload files to their home spaces. Enabled by default.
ui.space.allow-manage Allow users to create and manage spaces. Disabled by default.

results matching ""

    No results matching ""