About Roles

Describes roles in Data Fabric

A role comprises SSO users and/or SSO groups, along with the associated permissions on various Data Fabric resources.

The types of roles in Data Fabric are as follows:

  • Pre-defined roles
    NOTE
    Only pre-defined SSO provider roles are recognized and used by the Data Fabric UI
  • User-defined roles

An IAM policy can be assigned to or tagged to a user-defined role.

You can create and manage user-defined roles using the Data Fabric UI.

Pre-defined Roles

The pre-defined roles are as follows:
  • Infrastructure administrator
  • Fabric manager
  • Fabric user or developer

Following are the characteristics of pre-defined roles.

  • Predefined roles are made available as a part of the fabric deployment process, and stored in SSO service provider.
  • Pre-defined roles have a fixed set of permissions.
  • Pre-defined role are available on successfully deploying the first fabric.
  • You cannot modify or delete pre-defined roles.

See Pre-defined Roles and Associated Permissions for the permissions assigned to each of the pre-defined roles.

User-defined Roles

A user-defined role is an identity that is associated with IAM policies and one or more SSO users and/or SSO groups in Data Fabric.

Following are the characteristics of user-defined roles:
  • You can create and manage user-defined roles in Data Fabric.
  • You can create user-defined roles after fabric deployment.
  • You can create, modify, and delete user-defined roles, as required.
  • You can define permissions in user-defined roles through IAM policies.