You are viewing a plain text version of this content. The canonical link for it is here.
Posted to common-issues@hadoop.apache.org by "Jerry Chen (JIRA)" <ji...@apache.org> on 2014/11/26 03:05:12 UTC
[jira] [Updated] (HADOOP-11336) Native support of KMS High
Availability and Scalability
[ https://issues.apache.org/jira/browse/HADOOP-11336?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Jerry Chen updated HADOOP-11336:
--------------------------------
Summary: Native support of KMS High Availability and Scalability (was: Native support of KMS High Availability)
> Native support of KMS High Availability and Scalability
> -------------------------------------------------------
>
> Key: HADOOP-11336
> URL: https://issues.apache.org/jira/browse/HADOOP-11336
> Project: Hadoop Common
> Issue Type: Improvement
> Components: kms
> Affects Versions: trunk-win
> Reporter: Jerry Chen
> Labels: Security
> Original Estimate: 672h
> Remaining Estimate: 672h
>
> Currently, KMS supports multiple KMS instances behind a load balancer or VIP for scalability and HA purposes. A lot of extra configurations and cares must be taken to make them work properly as a single logical service.
> Especially when Kerberos authentication is used, special care must be taken on the service principles. (When KMS is used, strong authentication is very important to key security)
> It would be ideal to provide a native solution in KMS server and KMS client to support KMS high availability and scalability. This would make the deployment of HA and scalable KMS more straightforward as well as saving the cost of a specific load balancer and maintenance.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)