About Release 8.0.0
This site contains documentation for HPE Data Fabric release 8.0.0, including installation, configuration, administration, and reference content, as well as content for the associated ecosystem components and drivers.
8.0.0 Installation
This section contains information about installing HPE Data Fabric software. It also contains information about how to migrate data and applications from an Apache Hadoop cluster to a HPE Ezmeral Data Fabric cluster.
8.0.0 Upgrade
This section describes how to upgrade HPE Data Fabric software.
8.0.0 Data Fabric
HPE Data Fabric is the industry-leading data platform for AI and analytics that solves enterprise business needs.
- HPE Data Fabric File Store
  HPE Data Fabric File Store is a distributed file system for data storage, data management, and data protection. File Store supports mounting and cluster access via NFS and FUSE-based POSIX clients (basic, platinum, or PACC) and also supports access and management via HDFS APIs.
- HPE Data Fabric Object Store
  The HPE Data Fabric Object Store is a native object storage solution that efficiently stores objects and metadata for optimized access.
- HPE Data Fabric Database
  HPE Data Fabric Database is an enterprise-grade, high-performance, NoSQL database management system that you can use for real-time, operational analytics.
- HPE Data Fabric Streams
  HPE Data Fabric Streams brings integrated publish and subscribe messaging to the HPE Data Fabric.
- HPE Ezmeral Unified Analytics
  Describes the HPE Ezmeral Unified Analytics Software and provides a link to more information.
- Kubernetes Interfaces for Data Fabric
  This section describes the Kubernetes Interfaces for Data Fabric, which include the Container Storage Interface (CSI) driver for multiple container-orchestration systems, and the FlexVolume driver for Kubernetes.
- Cluster Management
  Provides a synopsis of the various cluster components and their management.
- Performance
  Describes how to tune system performance, manage RDMA, and optimize CLDB tables.
- Security
  Provides an overview of the Data Fabric security features.
  - Authentication in Data Fabric
    Describes types of authentication available with the HPE Data Fabric and how to manage user authentication with the maprlogin utility.
  - Authorization in Data Fabric
    Describes the basics of authorization including Access Control Lists and Access Control Expressions.
  - Encryption in Data Fabric
    Describes encryption types available on the HPE Data Fabric.
  - Prevent Storage of Specified Types of Files
    Provides an overview of how to prevent certain types of files from being stored on certain volumes.
  - Impersonation in Data Fabric
    Describes impersonation in Data Fabric, which allows centralized control of access to resources in the file system, HPE Data Fabric Database, and HPE Data Fabric Streams.
  - Auditing in Data Fabric
    Data Fabric allows you to log audit records of cluster-administration operations, and operations on directories, files, streams and tables.
  - Policy-Based Security
    Starting in core version 6.2.0 (EEP 7.0.0), HPE Data Fabric supports Policy-Based Security, a feature that administrators can use to classify security controls into a manageable number of security policies.
  - FIPS Compliance
    Describes how the HPE Data Fabric complies with Federal Information Processing Standard (FIPS) 140-2 Level 1.
  - Dynamic Data Masking
    Describes the Dynamic Data Masking feature that allows you to mask sensitive information when retrieving data.
  - Enabling Secured Browser Window
    Describes how to enable secure browsing in a browser tab or browser window by enabling forced logout of a user on closing the browser tab or window.
  - External KMIP Keystore Overview
    Describes the External KMIP Keystore functionality.
    - HSM Functionality Description
      Describes how KMIP Keystores work.
    - KMIP Supported Operations
      Lists the KMIP operations that HSM should support, to use the external KMIP keystore.
    - KMIP Supported Attributes
      Lists the KMIP attributes supported by the Data Fabric KMIP client library.
    - KMIP Supported Versions
      Lists the KMIP versions supported by the key management vendors.
    - KMIP Rekey Process
      Describes the rekey process for CLDB and DARE keys.
    - Setting-up KMIP—for Existing Data Fabric Installation
      Describes how to set up the an external KMIP keystore and how to enable integration with existing Data Fabric.
    - mrhsm Commands
      This section discusses the mrhsm commands.
    - Integration Guides
      This section contains the Data Fabric integrations guides with external vendors for KMIP.
      - Utimaco ESKM Integration Guide
        Describes how to integrate the Data Fabric platform with the Utimaco ESKM server.
      - Gemalto SafeNet KeySecure Key Manager (now known as Thales CipherTrust Manager) Integration Guide
        Describes how to integrate the Data Fabric platform with the Gemalto SafeNet KeySecure Key Manager (now known as Thales CipherTrust Manager).
      - Vormetric Data Security Manager (DSM) Integration Guide
        Describes how to integrate the Data Fabric platform with the Vormetric Data Security Manager.
      - HashiCorp Vault Integration Guide
        Describes how to integrate the Data Fabric platform with HashiCorp Vault.
        Step 1: Install and Set Up the Vault
        Explains how to setup HashiCorp Vault.
        Step 2: Configure KMIP Secrets Engine
        Explains how to setup the KMIP secrets engine.
        Step 3: Create Scopes and Rules
        Explains how to setup Scopes and Rules.
        Step 4: Generate the CA and the Client Certificate
        Explains how to generate the CA and the Client certificate to install on the Data Fabric platform.
    - Frequently Asked Questions
      Answers the frequently asked questions on disaster recovery for KMIP.
  - Managing Concurrent User Sessions for User
    Describes how to configure or restrict the maximum number of concurrent web server sessions for a Data Fabric user.
  - Security for Ecosystem Components
    Whether you install Data Fabric software by using the Installer or by using manual steps, the platform and its ecosystem components are installed with security ON by default.
  - Setting Server Side Timeout for Session Management
    Describes how to configure server side timeout to automatically log a Data Fabric user out of an inactive user session in the Data Fabric Web UI application (Control System UI, the Object Store UI or the Data Fabric UI).
  - Security Settings for Ecosystem Components
    Lists the security settings for all HPE Data Fabric ecosystem components.
  - Security Exceptions
    "Secure by default" means network-safe authentication and encryption. This page describes areas in which secure-by-default capabilities are not yet implemented for the Data Fabric platform or ecosystem components. Included where applicable, are links to more information to help you work around those issues.
- YARN
- Client Connections
  The following sections describe how a client connects to local and remote Data Fabric clusters.
8.0.0 Administration
This section describes how to manage the nodes and services that make up a cluster.
8.0.0 Development
This section contains information related to application development for Ezmeral ecosystem components and HPE Data Fabric products, including the file system, Database (Key-Value and JSON), and Event Streams.
Other Docs
This section contains release-independent information, including: Installer documentation, Ecosystem release notes, interoperability matrices, security vulnerabilities, and links to other Data Fabric version documentation.
Glossary
Definitions for commonly used terms in MapR Converged Data Platform environments.

Step 3: Create Scopes and Rules

Explains how to setup Scopes and Rules.

Scopes partition KMIP managed object storage into multiple named buckets, while Roles in the KMIP secrets engine determine the set of KMIP operations that KMIP clients are allowed to perform.

Create a Scope. In this example, it is named mapr.
```
$ vault write -f kmip/scope/mapr
```
Create a new Role under the example Scope mapr. Name the Role maprkmipclient1.
```
$ vault write kmip/scope/mapr/role/maprkmipclient1 operation_all=true
```

The Role should be displayed as follows:

$ vault read kmip/scope/mapr/role/maprkmipclient1
Key                    Value
---                    -----
operation_all          true
tls_client_key_bits    0
tls_client_key_ttl     0s
tls_client_key_type    n/a

Partners Support Dev-Hub Community ALA Privacy Policy Glossary

HPE Data Fabric 8.0.0 Software Documentation
Abstract	This site contains documentation for HPE Data Fabric Software version 8.0.0 including installation, configuration, administration, and reference content, as well as content for the associated bundled ecosystem components and drivers.
Published	November 2025
Edition	8.0.0
Topic last updated	2020-11-30