THIS IS A TEST INSTANCE. ALL YOUR CHANGES WILL BE LOST!!!!
Log in
Skip to sidebar
Skip to main content
Apache Software Foundation
Spaces
Hit enter to search
Help
Online Help
Keyboard Shortcuts
Feed Builder
What’s new
What’s new
Available Gadgets
About Confluence
Log in
KNOX
Pages
Blog
Space shortcuts
UML Diagrams
Child pages
Diagrams
Linux Multi Kerberos Realm with Active Directory
Browse pages
Configure
Space tools
A
t
tachments (0)
Page History
Resolved comments
Page Information
View in Hierarchy
View Source
Delete comments
Export to PDF
Export to Word
Copy Page Tree
Pages
Index
Diagrams
Jira links
Linux Multi Kerberos Realm with Active Directory
Created by
Kevin Minder
, last modified on
Dec 06, 2013
Linux Multi Kerberos Realm with Active Directory
Gateway Node
Corporate Network
Hadoop Cluster
User
(user)
Hadoop
Client
(cli)
User's
Ticket
Cache
Active
Directory
(ad)
MIT
KDC
(mit)
Service's
Keytab
Hadoop
Services
(eg hdfs)
Contains
service
accounts
Contains user
accounts &
group info
1
kinit(hdfs):hdfs-mit-tgt
2
load:password
3
login(guest):user-ad-tgt
4
store(user-ad-tgt)
5
hadoop fs ls
6
load():user-ad-tgt
7
tgsReq(user-ad-tgt,mit):user-mit-tgt
8
tgsReq(user-mit-tgt,hdfs):user-hdfs-st
9
ls[user-hdfs-st](dir):files
10
verify(user-hdfs-st)
11
groupLookup(user):groups
No labels
Overview
Content Tools
Apps
{"serverDuration": 312, "requestCorrelationId": "43afcccc4350db86"}
