Create roles with database access only
Create roles with database access only.
Roles with database access grant the ability to access and interact with a database's data. Database access privileges are determined by defining Redis ACLs and adding them to roles.
To create a role that grants database access without granting access to the Redis Enterprise Cluster Manager UI and REST API:
-
Define Redis ACLs that determine database access privileges.
-
Create a role with ACLs added and leave the Cluster management role as None.
Define Redis ACLs
To define a Redis ACL rule that you can assign to a role:
-
From Access Control > Redis ACLs, you can either:
-
Point to a Redis ACL and select
to edit an existing Redis ACL. -
Select + Add Redis ACL to create a new Redis ACL.
-
-
Enter a descriptive name for the Redis ACL. This will be used to associate the ACL rule with the role.
-
Define the ACL rule. For more information about Redis ACL rules and syntax, see the Redis ACL overview.
Note:The ACL builder does not support selectors and key permissions. Use Free text command to manually define them instead. -
Select Save.
failure, but the command runs on the keys that are allowed.Create roles with ACLs
To create a role that grants database access to users but blocks access to the Redis Enterprise Cluster Manager UI and REST API, set the Cluster management role to None.
To define a role for database access:
-
From Access Control > Roles, you can:
-
Point to a role and select
to edit an existing role. -
Select + Add role to create a new role.
-
-
Enter a descriptive name for the role. This will be used to reference the role when configuring users.
-
Leave Cluster management role as the default None.
-
Select + Add ACL.
-
Choose a Redis ACL and databases to associate with the role.
-
Select the check mark
to confirm. -
Select Save.
You can assign the new role to users to grant database access.