acl edit

Modifies a specific user's access to a cluster, volume, or security policy.

Permissions Required

The acl edit command grants one or more specific volume or cluster permissions to a user. To use the acl edit command, you must have administrative (a) permissions on the volume and cluster for which you are running the command. The permissions are specified as a comma-separated list of permission codes. See acl.

Syntax

CLI 
/opt/mapr/bin/maprcli acl edit
    [ -cluster <cluster name> ]
    [ -group <group> ]
    [ -name <name> ]
    -type cluster|volume|securitypolicy
    [ -user <user> ]
REST
Request Type POST
Request URL 
http[s]://<host:port>/rest/acl/edit?<parameters>

Parameters

Parameter

Description

cluster

The cluster on which to run the command.

group

Groups and allowed actions for each group. See acl. Format: <group>:<action>[,<action>...][ <group>:<action>[,<action...]]. You must specify either a user or a group.

name

The object name. For a volume, specify the name of the volume in this parameter.

To set security policy level permissions, specify the name of the security policy in this parameter.

type

The object type. Allowed values are cluster, volume or securitypolicy.

user

Users and allowed actions for each user. See acl. Format: <user>:<action>[,<action>...][ <user>:<action>[,<action...]]. You must specify either a user or a group.

Examples

Give the user jsmith dump, restore, and delete permissions for "test-volume":
CLI 
/opt/mapr/bin/maprcli acl edit -type volume -name test-volume -user jsmith:dump,restore,d
REST
https://10.10.82.22:8443/rest/acl/edit?type=volume&name=test-volume&user=jsmith%3Adump,restore,d
Parent topic: acl