Vertica Management Console Users
To start we need to understand that Management Console Admin Users are not Vertica Database users nor system(Linux) users. They are external user to the Vertica Database and they reside in the web-server/app of the Management Console. They have access to the Management Console and Vertica Database thrum some access levels.
In Vertica Management Console we can have 3 types of access levels :
This access level gives the ability to create users and manage MC settings on the MC interface. Each user created can have only one of the following roles:
| MC access privileges | ADMIN | IT | NONE |
|---|---|---|---|
|
Configure MC settings: -Configure storage locations and ports -Upload an HP Vertica pcense -Upload new SSL certificates -Manage LDAP authentication |
Yes |
||
|
Create and manage databases and clusters -Create a new database or import an existing one -Create a new cluster or import an existing one -Remove database/cluster from the MC interface |
Yes |
||
|
Configure user settings: -Add, edit, delete users -Enable/disable user access to MC -Add, change, delete user permissions -Map users to one or more databases |
Yes |
||
|
Monitor user activity on MC |
Yes |
||
|
Reset MC to its original, preconfigured state |
Yes |
||
|
Restart Management Console |
Yes |
||
|
Disable or enable user access to MC interface |
Yes |
Yes |
|
|
Reset users' (non-LDAP) passwords |
Yes |
Yes |
|
|
Monitor all console-managed databases |
Yes |
Yes |
|
|
View MC log and non-database MC alerts |
Yes |
Yes |
Management Console User that receive database access need to be mapped with a existing user account created on the Vertica database, the Management Console User will inherit the the privileges assigned to that database user and ensures that the MC user cannot do or see anything that is not allowed by the privileges set up for the user account on the server database.
| Default database-level privileges | ADMIN | IT | USER |
|---|---|---|---|
|
View messages |
Yes |
Yes |
Yes |
|
Delete messages and mark read/unread |
Yes |
Yes |
|
|
View database Overview page |
Yes |
Yes |
Yes |
|
View database Activity page |
Yes |
Yes |
Yes |
|
View database grid page |
Yes |
Yes |
Yes |
|
Start a database |
Yes |
||
|
Stop a node |
Yes |
||
|
View node state |
Yes |
Yes |
|
|
View MC settings |
Yes |
Yes |
