Versions Compared

Old Version 43

changes.mady.by.user Gautam Borad

Saved on

compared with

New Version 44

changes.mady.by.user Gautam Borad

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

  • Check for HTTP Principal

    -> kinit -kt <HTTP keytab path> HTTP/<FQDN_OF_Ranger_Admin_Cluster>@<REALM>

     

    Code Block
    languagebash
               E.g : kinit -kt /etc/security/keytabs/spnego.service.keytab HTTP/mp-ranger-0703-3.novalocal@EXAMPLE<FQDN>@EXAMPLE.COM

         (After above command there should not be any error. You can check using “klist” whether the above command was successful)

...

  • Create rangeradmin/<FQDN of Ranger Admin>@<REALM>
    -> kadmin.local

    -> addprinc -randkey rangeradmin/<FQDN of Ranger Admin>
          Eg: addprinc -randkey rangeradmin/mp-ranger-0703-3.novalocal@EXAMPLE.<FQDN>@EXAMPLE.COM

    -> xst -k /etc/security/keytabs/rangeradmin.keytab rangeradmin/<FQDN of Ranger Admin>@<REALM>

    -> exit

  •  Check ranger-admin created principal

          -> kinit -kt  /etc/security/keytabs/rangeradmin.keytab rangeradmin/<FQDN of Ranger Admin>@<REALM>
                 E.g : kinit -kt  /etc/security/keytabs/rangeradmin.keytab rangeradmin/mp-ranger-0703-3.novalocal@EXAMPLE.<FQDN>@EXAMPLE.COM 
                 (After above command there should not be any error. You can check using “klist” whether the above command was successful)

         -> kdestroy (Please don’t miss kdestroy after above step)

...

Eg: addprinc -randkey rangerlookup/mp-ranger-0703-3.novalocal@EXAMPLE.<FQDN>@EXAMPLE.COM

  -> xst -k /etc/security/keytabs/rangerlookup.keytab rangerlookup/<FQDN of Ranger Admin>@<REALM>           

...

 E.g : kinit -kt  /etc/security/keytabs/rangerlookup.keytab rangerlookup/mp-ranger-0703-3.novalocal@EXAMPLE<FQDN>@EXAMPLE.COM

                (After above command there should not be any error u can check using “klist” whether the above command was successful)

...

   Eg: addprinc -randkey rangerusersync/mp-ranger-0703-3.novalocal@EXAMPLE<FQDN>@EXAMPLE.COM

 -> xst -k /etc/security/keytabs/rangerusersync.keytab rangerusersync/<FQDN>@<REALM>

...

               E.g : kinit -kt  /etc/security/keytabs/rangerusersync.keytab rangerusersync/mp-ranger-0703-3.novalocal@EXAMPLE.<FQDN>@EXAMPLE.COM

               (After above command there should not be any error u can check using “klist” whether the above command was successful)

...

  Eg: addprinc -randkey rangertagsync/mp-ranger-0703-3.novalocal<FQDN>

 -> xst -k /etc/security/keytabs/rangertagsync.keytab rangertagsync/<FQDN>@<REALM>

...

               E.g : kinit -kt  /etc/security/keytabs/rangertagsync.keytab rangertagsync/mp-ranger-0703-3.novalocal@EXAMPLE<FQDN>@EXAMPLE.COM

               (After above command there should not be any error u can check using “klist” whether the above command was successful)

...