To grant LDAP users access to a database, assign the mapped access role to the access control list (ACL) for the database.

  1. In the Cluster Manager UI, go to Databases, then select the database from the list.

  2. From the Security tab, select the Edit button.

  3. In the Access Control List section, select + Add ACL.

    Updating a database access control list (ACL)
  4. Select the appropriate roles and then save your changes.

If you assign multiple roles to an ACL and a user is authorized by more than one of these roles, their access is determined by the first “matching” rule in the list.

If the first rule gives them read access and the third rule authorizes write access, the user will only be able to read data.

As a result, we recommend ordering roles so that higher access roles appear before roles with more limited access.

More info