...
If you want to test OS’s other than what’s currently in the ambari-vagrant repo, please see http://www.vagrantbox.es/ for all the readily available OS images you can test. Note that Ambari currently works on RHEL 5/6, CentOS 5/6, Oracle Linux 5/6, SUSE 11, and SLES 11. Ubuntu support is work in progress.
Kerberos Support
Ambari supports adding Kerberos security to an existing Ambari-installed cluster. First setup any one host as the KDC as follows:
Install the Kerberos server on the chosen host. e.g. for Centos/RedHat
Code Block | ||
---|---|---|
| ||
yum install krb5-server krb5-libs krb5-auth-dialog rng-tools -y |
Create the Kerberos database.
Code Block | ||
---|---|---|
| ||
rngd -r /dev/urandom -o /dev/random
/usr/sbin/kdb5_util create -s |
Update /etc/krb5.conf
on the KDC host. e.g. if your realm is EXAMPLE.COM
and kdc host is c6401.ambari.apache.org
Code Block |
---|
[realms]
EXAMPLE.COM = {
admin_server = c6401.ambari.apache.org
kdc = c6401.ambari.apache.org
} |
Restart Kerberos services. e.g. for Centos/RedHat
Code Block |
---|
/etc/rc.d/init.d/krb5kdc restart
/etc/rc.d/init.d/kadmin restart |
Create a KDC admin principal admin/admin@EXAMPLE.COM
using a password.
Code Block | ||
---|---|---|
| ||
$ sudo kadmin.local
kadmin.local: add_principal admin/admin@EXAMPLE.COM
WARNING: no policy specified for admin/admin@EXAMPLE.COM; defaulting to no policy
Enter password for principal "admin/admin@EXAMPLE.COM":
Re-enter password for principal "admin/admin@EXAMPLE.COM":
Principal "admin/admin@EXAMPLE.COM" created. |
Remember the password for this principal. The Ambari Kerberos Wizard will request it later. Distribute the updated /etc/krb5.conf
file to remaining hosts in the cluster.
Navigate to Ambari Dashboard —> Admin —> Kerberos to launch the Kerberos Wizard and follow the wizard steps. If you run into errors, the Ambari server logs can be found at /var/log/ambari-server/ambari-server.log
.
Pre-Configured Development Environment
...