You can grant permissions to each collaborator/sub-account in the console. For the authorization method, see CAM.
EMR currently provides three permission roles. You can search for the roles by the keyword “EMR” on the policy page in the CAM Console.
| Role | Permissions |
|---|---|
| QcloudEMRObserverAccess (observer access) | API for getting component configuration information. API for getting monitoring information. API for getting node information. Get cluster list. |
| QcloudEMROperationAccess (OPS access) | Inherit the observer access. Modify parameters and distribute configurations. Restart services. Change passwords. |
| QcloudEMRAdministratorAccess (admin access) | Inherit OPS access. Restart the specified service. Scale out. Scale in. Create a cluster. Terminate the specified cluster. Change passwords for the specified cluster. |
