hadoop-common-user mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Zheng, Kai" <kai.zh...@intel.com>
Subject RE: Issue with WebHDFS Kerberos authentication, when running with JVM-1.7.0-SR1 or above
Date Thu, 07 Jan 2016 06:49:43 GMT
It looks like in the JDK versions in question, your client credential TGT isn't able to authenticate
to the WebHDFS server, or the TGT doesn't match with any keytab key configured for HTTP service
principal. You may inspect your keytab file closely, checking the key version, encryption
types and so on. More logs may be helpful, for the IBM JDK, I guess you can try the following.

-Dcom.ibm.security.jgss.debug=all -Dcom.ibm.security.krb5.Krb5Debug=all

Regards,
Kai

From: Ravi Tatapudi [mailto:ravi_tatapudi@in.ibm.com]
Sent: Wednesday, January 06, 2016 8:10 PM
To: user@hadoop.apache.org
Subject: Issue with WebHDFS Kerberos authentication, when running with JVM-1.7.0-SR1 or above

Hello,

Pl. find attached text-file, having the sample-code for deleting a file on WebHDFS, with "kerberos
security" enabled.



I see that, this code is working successfully when run using "JDK-1.7-GA" (i.e., with "J9VM
- R27_Java727_GA_20131114_0833_B175264", as seen from the output of the command: "java -version").
However, when the same code is run using the JDK-1.7-SR1 or above (i.e., with "J9VM - R27_Java727_SR1_20140410_1931_B195893",
as seen from the output of the command: "java -version"), it is failing with the exception
shown in the attached text-file below:



I also tried using the JDK-1.7-SR3.fp20 ("J9VM - R27_Java727_SR3_20151022_1530_B273253") &
got the same exception, that I am seeing with JDK-1.7-SR1. I have executed all these tests,
using the same set of Hadoop/Hive-jars, the only change being the JDK-version.

Could you please see the same & provide your inputs / suggestions on how to proceed further
with this issue.

Thanks,
 Ravi

Mime
View raw message