Creating Service User in Privitar
If impersonation is needed, a Privitar Service User is required for delegated requests. It needs to exist for all the Privacy Platformenvironments that will use Ionic Machina KMS. This account will be tied to the Hadoop impersonation.
To create a new Service User follow these steps:
Select Environments, from the navigation sidebar.
Click on the environment to edit.
Click on the Configure button, under the Hadoop Cluster check box.
Under the Authentication tab, select Service user.
Enter a username and a group, then click Add.
Click on Save, then Save again.
Note
When using service users, requests to Ionic Machina KMS default to acting on behalf of the same username as specified within Hadoop. If the username within Ionic does not match the Hadoop username, you can additionally specify an External ID to enable a mapping between these usernames.
