Synchronizing Permissions Across Your Cluster

You can ease user account management by automatically keeping non-root user accounts, roles, and groups in sync across your cluster. This functionality is enabled through a new engine variable named sync_permissions. All user account operations performed on the master aggregator are propagated automatically to each child aggregator in the cluster. For example, if an administrator connects to the master aggregator, issues a GRANT to change a user’s password, and then tries to connect to a child aggregator as that user using the old password, the old password will be rejected. If this command is issued in the child aggregator, it is first forwarded to the master aggregator, then propagated in the same way.