You are viewing a plain text version of this content. The canonical link for it is here.
Posted to common-dev@hadoop.apache.org by "Wei-Chiu Chuang (JIRA)" <ji...@apache.org> on 2019/08/03 21:32:00 UTC
[jira] [Resolved] (HADOOP-11336) Native support of KMS High
Availability and Scalability
[ https://issues.apache.org/jira/browse/HADOOP-11336?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Wei-Chiu Chuang resolved HADOOP-11336.
--------------------------------------
Resolution: Not A Bug
Resolving this as not a bug. KMS supports HA natively.
> Native support of KMS High Availability and Scalability
> -------------------------------------------------------
>
> Key: HADOOP-11336
> URL: https://issues.apache.org/jira/browse/HADOOP-11336
> Project: Hadoop Common
> Issue Type: Improvement
> Components: kms
> Affects Versions: trunk-win
> Reporter: Haifeng Chen
> Assignee: Dian Fu
> Priority: Major
> Labels: Security
> Original Estimate: 672h
> Remaining Estimate: 672h
>
> Currently, KMS supports multiple KMS instances behind a load balancer or VIP for scalability and HA purposes. A lot of extra configurations and cares must be taken to make them work properly as a single logical service.
> Especially when Kerberos authentication is used, special care must be taken on the service principles. (When KMS is used, strong authentication is very important to key security)
> It would be ideal to provide a native solution in KMS server and KMS client to support KMS high availability and scalability. This would make the deployment of HA and scalable KMS more straightforward as well as saving the cost of a specific load balancer and maintenance.
--
This message was sent by Atlassian JIRA
(v7.6.14#76016)
---------------------------------------------------------------------
To unsubscribe, e-mail: common-dev-unsubscribe@hadoop.apache.org
For additional commands, e-mail: common-dev-help@hadoop.apache.org