Configuration of the local security
Configuration of the local security module
When DSS runs a command on behalf of an end-user, it consults the security module configuration in
/etc/dataiku-security/INSTALL_ID/security/security-config.ini
.
This ini file contains two important information:
-
Which user groups it may change identity to. This is configured in
[users]
, in theallowed_user_groups
settings. -
Where DSS is located. DSS will not change any file permissions outside of this directory, unless explicitly allowed as stated below.
Splitted DSS datadirs
In some configurations, you might have “splitted” your DSS datadir, by using symbolic links.
To allow the security module to change file permissions in the additional locations, fill in the
additional_allowed_file_dirs
in the
dirs
section.