You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@ambari.apache.org by "Jaimin D Jetly (JIRA)" <ji...@apache.org> on 2014/03/11 22:59:43 UTC
[jira] [Reopened] (AMBARI-5011) Security Wizard: enable Kerberos
setup for Falcon
[ https://issues.apache.org/jira/browse/AMBARI-5011?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Jaimin D Jetly reopened AMBARI-5011:
------------------------------------
Additional property {{*.falcon.authentication.type}} needs to be set to kerberos on enabling security.
> Security Wizard: enable Kerberos setup for Falcon
> -------------------------------------------------
>
> Key: AMBARI-5011
> URL: https://issues.apache.org/jira/browse/AMBARI-5011
> Project: Ambari
> Issue Type: Bug
> Components: client
> Affects Versions: 1.5.0
> Reporter: Jaimin D Jetly
> Assignee: Jaimin D Jetly
> Fix For: 1.5.0
>
> Attachments: AMBARI-5011.patch
>
>
> To enable security we need add following properties to falcon-startup.properties:
> {noformat}
> "*.falcon.http.authentication.kerberos.principal":"HTTP/_HOST@EXAMPLE.COM"
> "*.falcon.http.authentication.kerberos.keytab":"/etc/security/keytabs/spnego.service.keytab"
> "*.falcon.service.authentication.kerberos.principal":"falcon/_HOST@EXAMPLE.COM"
> "*.falcon.service.authentication.kerberos.keytab":"/etc/security/keytabs/falcon.service.keytab"
> "*.dfs.namenode.kerberos.principal":"nn/_HOST@EXAMPLE.COM"
> "*.falcon.http.authentication.type":"kerberos"
> {noformat}
> Also, we need to add
> {noformat}
> <properties>
> <property name="dfs.namenode.kerberos.principal" value="nn/_HOST@EXAMPLE.COM" />
> </properties>
> {noformat}
> in cluster definition to make it works in secured mode.
--
This message was sent by Atlassian JIRA
(v6.2#6252)