About Roles
Describes roles in Data Fabric
A role comprises SSO users and/or SSO groups, along with the associated permissions on various Data Fabric resources.
The types of roles in Data Fabric are as follows:
- Pre-defined rolesNOTEOnly pre-defined SSO provider roles are recognized and used by the Data Fabric UI
- User-defined roles
An IAM policy can be assigned to or tagged to a user-defined role.
You can create and manage user-defined roles using the Data Fabric UI.
Pre-defined Roles
The pre-defined roles are as follows:
- Infrastructure administrator
- Fabric manager
- Fabric user or developer
Following are the characteristics of pre-defined roles.
- Predefined roles are made available as a part of the fabric deployment process, and stored in SSO service provider.
- Pre-defined roles have a fixed set of permissions.
- Pre-defined role are available on successfully deploying the first fabric.
- You cannot modify or delete pre-defined roles.
See Pre-defined Roles and Associated Permissions for the permissions assigned to each of the pre-defined roles.
User-defined Roles
A user-defined role is an identity that is associated with IAM policies and one or more SSO users and/or SSO groups in Data Fabric.
Following are the characteristics of user-defined roles:
- You can create and manage user-defined roles in Data Fabric.
- You can create user-defined roles after fabric deployment.
- You can create, modify, and delete user-defined roles, as required.
- You can define permissions in user-defined roles through IAM policies.