Learn how to manage access to resources using roles.
April 4, 2024
This page describes how HPE ML Data Management’s access control system works and how you can use it to manage access in HPE ML Data Management. Use RBAC to grant granular access to specific HPE ML Data Management resources.
Role-based Access Control works by managing access for users (human or robot) through assigned roles. Roles contain a set of granular permissions (create, read, update, delete) for a given resource. In HPE ML Data Management, resources include clusters, projects, and repositories.
A user can have many roles, and some roles encompass the permissions of other roles. For example, if you have a clusterAdmin, all other permissions belonging to more restricted roles are included.
💡
You can use the command pachctl auth roles-for-permission <permission> to look up which roles provide a given permission.