About Release 8.0.0
This site contains documentation for HPE Data Fabric release 8.0.0, including installation, configuration, administration, and reference content, as well as content for the associated ecosystem components and drivers.
8.0.0 Installation
This section contains information about installing HPE Data Fabric software. It also contains information about how to migrate data and applications from an Apache Hadoop cluster to a HPE Ezmeral Data Fabric cluster.
8.0.0 Upgrade
This section describes how to upgrade HPE Data Fabric software.
8.0.0 Data Fabric
HPE Data Fabric is the industry-leading data platform for AI and analytics that solves enterprise business needs.
8.0.0 Administration
This section describes how to manage the nodes and services that make up a cluster.
- Working with Multiple Fabrics Using the Data Fabric UI
  This section describes how you can get started learning about, installing, and using the HPE Data Fabric.
- Administering Users and Clusters
  Lists topics that help manage a Data Fabric cluster.
- Administering Nodes
  Provides a synopsis of managing nodes in a cluster.
- Administering Volumes
  This section provide information about how to organize and manage data using volumes, a unique feature of HPE Data Fabric clusters.
- Administering Files and Directories
- Administering Tables
  Administration of the HPE Data Fabric Database is done primarily via the command line (maprcli) or with the Managed Control System (MCS). Regardless of whether the HPE Data Fabric Database table is used for binary files or JSON documents, the same types of commands are used with slightly different parameter options. HPE Data Fabric Database administration is associated with tables, columns and column families, and table regions.
- Administering Streams
- Administering Data Fabric Gateways
  A HPE Data Fabric gateway mediates one-way communication between a source HPE Data Fabric cluster and a destination cluster. You can replicate HPE Data Fabric Database tables (binary and JSON) and HPE Data Fabric Streams streams. HPE Data Fabric gateways also apply updates from JSON tables to their secondary indexes and propagate Change Data Capture (CDC) logs.
- Administering Services
- Monitoring the Cluster
  This section describes how to monitor the health and performance of a MapR cluster.
- Configuring Security
  Describes how to configure security and manage secure clusters.
- Managing Secure Clusters
  Provides procedures that will enable you to use Data Fabric clusters securely.
- Administering the Data Access Gateway
  The HPE Data Fabric Data Access Gateway is a service that acts as a proxy and gateway for translating requests between lightweight client applications and the HPE Data Fabric cluster. This section describes considerations when upgrading the service, how to modify configuration settings, and how to administer and manage the service.
- Planning for High Availability
- Administrator's Reference
  This section contains in-depth reference information for the administrator.
  - maprcli and REST API Syntax
    This section provides information about the HPE Data Fabric command API. Most commands can be run on the command-line interface (CLI), or by making REST requests programmatically or in a browser.
    - Overview
      Each command reference page includes the command syntax, a table that describes the parameters, and examples of command usage.
    - acerole validate
      Verifies given user roles for ACEs exists in the /opt/mapr/conf/m7_permissions_roles_refimpl.conf file.
    - acl
      Describes the acl commands used to access control lists (ACLs).
    - alarm
      Describes the alarm commands that perform functions related to system alarms.
    - audit
      Describes commands used to audit operations related to cluster management and data access.
    - blockaccess
      Describes commands used to include users in the blocklist and to list users who are in the blocklist.
    - cluster
      Manages cluster features, gateways, and cluster-wide settings.
    - clustergroup
      Adds, deletes and updates clusters from cluster groups/global namespace.
    - cluster services
      Returns the activation status and enables restoration of a disabled fabric.
    - cluster usage
      Describes the cluster usage commands that check the service activation URLs, register the cluster, and renew the activation for an air-gapped cluster.
    - config
      Lists configuration values for the Data Fabric cluster.
    - dashboard info
      Displays a summary of information about the cluster.
    - dialhome
    - disk
      Lists disk parameters.
    - dump
      Returns key information about volumes, containers, storage pools, and Data Fabric cluster services for debugging and troubleshooting.
    - entity
      Manages entities (users and groups).
    - fid
      Displays information about HPE Data Fabric Database or file-system components that are identified by a FID.
    - file
      Lets you perform tiering operations at the file level.
    - filefilter
      Creates and modifies filters to restrict certain file types from being stored on specified volumes.
    - insight
      Describes the maprcli command to enable insights and get information related to insights.
    - installer
      Describes commands for HPE Data Fabric cluster installation and removal for clusters that were installed using the seed installation method.
    - job
      Manages Hadoop jobs running on the cluster.
    - license
      Manages Data Fabric licenses.
    - label
      Manages registration and modification of labels.
    - nfsmgmt
      Refreshes NFS exports and server cache.
    - nfs4mgmt
      Manages NFSv4 server.
    - node
      Manages nodes in the cluster
    - otel
      Commands for managing Open Telemetry (OTel) end points.
    - rlimit
      Manages resource usage limits for the cluster.
    - schedule
      Manages schedules.
    - security
    - security iam resource
      Facilitates cluster resource-related operations related to IAM policy management.
    - security iam task
    - security iam role
      Command to manage custom roles.
    - security iam policy
      - security iam policy create
        Creates an IAM policy.
      - security iam policy attach
        Attaches an IAM policy to one or more identities.
      - security iam policy detach
        Detaches an IAM policy from one or more identities.
      - security iam policy modify
        Modifies an IAM policy.
      - security iam policy remove
        Removes an IAM policy.
      - security iam policy list
        Lists all existing identity access management (IAM) policies.
      - security iam policy info
        Displays information about an IAM policy.
      - security iam policy mapping
        Displays IAM policy-identity mapping information.
    - service list
      Lists all services on the specified node, the memory allocated for each service, the state of each service, and log path for each service.
    - setloglevel
      Sets log level on individual services.
    - stream
      Manages stream functionality.
    - kafkatopic
      Displays help for the maprcli commands related to Kafka topics that are available in Data Fabric.
    - s3domain
      Commands for managing HPE Data Fabric Object Store domains.
    - s3keys
      Commands for managing HPE Data Fabric Object Store access and secret keys.
    - table
      Performs functions related to HPE Data Fabric Database tables.
    - tier
      Lets you create, modify, remove, and retrieve list of tiers and tiering rules.
    - trace
      Lets you view and modify the trace buffer, and the trace levels for the system modules.
    - urls
      Displays the status page URL for the specified service.
    - virtualip
      Manages virtual IP addresses for NFS nodes.
    - volume
      Manages volumes, snapshots and mirrors.
  - MinIO Client (mc) Commands
    Lists mc commands that you can use to perform operations, such as creating and editing buckets and accounts in HPE Data Fabric Object Store.
  - Utilities
    Contains information about various scripts and utilities, that help setup, maintain, and monitor clusters.
  - Configuration Files
    This section contains reference information about various configuration files.
  - Alarms Reference
    The pages in this section provide details about all of the types of alarms.
  - HPE Data Fabric Environment
    This section provides information associated with the Data Fabric environment.
- Troubleshooting Cluster Administration
  Lists the common errors and their solutions.
- Best Practices for Backing Up HPE Data Fabric Information
  Lists the best practices and performance considerations to follow when backing up HPE Data Fabric information.
- IPv6 Support in Data Fabric
  Describes the IPv6 support feature for Data Fabric.
8.0.0 Development
This section contains information related to application development for Ezmeral ecosystem components and HPE Data Fabric products, including the file system, Database (Key-Value and JSON), and Event Streams.
Other Docs
This section contains release-independent information, including: Installer documentation, Ecosystem release notes, interoperability matrices, security vulnerabilities, and links to other Data Fabric version documentation.
Glossary
Definitions for commonly used terms in MapR Converged Data Platform environments.

security iam policy detach

Detaches an IAM policy from one or more identities.

You can use iam policy detach command to detach an identity access management (IAM) policy from identities (users, groups, or roles).

You can run the iam policy detach command on a primary cluster only.

Multiple type of identities (users, groups, roles) and number of identities (comma-separated names) can be specified in same command.

Syntax

CLI

maprcli security iam policy detach -name [ -users <User Names> -groups <Group Names> -roles <Role Names> ]

REST

Request Type	POST
Request URL	`http[s]://<host>:<port>/rest/iam/policy/detach?<parameters>`

Parameters

Parameter	Description
`name`	(Required) Name of the policy.
`users`	(Optional) List of users.
`groups`	(Optional) List of groups
`roles`	(Optional) Name of roles

Example

Detach IAM policy Policy1 from user user3

CLI

maprcli security iam policy detach -name Policy1 -users user3 -json
{
        "timestamp":1726154439156,
        "timeofday":"2024-09-12 08:20:39.156 GMT-0700 AM",
        "status":"OK",
        "total":0,
        "data":[
        
        ],
        "messages":[
                "Identity Policy 'Policy1' detached successfully"
        ]
}

REST

curl -u <username> -X POST 'https://server.sj.us:8443/rest/security/iam/policy/detach?name=Policy1&users=user3'

Partners Support Dev-Hub Community ALA Privacy Policy Glossary

HPE Data Fabric 8.0.0 Software Documentation
Abstract	This site contains documentation for HPE Data Fabric Software version 8.0.0 including installation, configuration, administration, and reference content, as well as content for the associated bundled ecosystem components and drivers.
Published	March 2026
Edition	8.0.0
Topic last updated	2025-03-13