hadoop-hdfs-user mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Xiaohua Chen <xiaohua.c...@gmail.com>
Subject Re: what changes needed for existing HDFS java client in order to work with kerberosed hadoop server ?
Date Thu, 17 Jul 2014 21:45:20 GMT
Hi Chris,

Thank you very much for your reply.

One more question:
I come across org.apache.hadoop.security.SecurityUtil
 and it provides a couple of login methods e.g. login(Configuration
conf, String keytabFileKey, String userNameKey) .   So if Kerberos
kinit utility is not available from client workstation where our java
client is deployed , do you think the above SecurityUtil.login(...)
can help our application code to authenticate the user defined through
the userNameKey argument  and its credential is provided through
keyTab file ?

Thanks again your help!

Best Regards,


On Thu, Jul 17, 2014 at 10:42 AM, Chris Nauroth
<cnauroth@hortonworks.com> wrote:
> Hello Sophie,
> If you're using the HDFS lib like you said (i.e. obtaining an instance of
> FileSystem and using its methods), then I expect your code will "just work"
> with no code changes required when you start running against a secure
> cluster.  The work of switching to a secured deployment with Kerberos is
> mostly a matter of configuration:
> http://hadoop.apache.org/docs/r2.4.1/hadoop-project-dist/hadoop-common/SecureMode.html
> This configuration is external to application code.
> Chris Nauroth
> Hortonworks
> http://hortonworks.com/
> On Wed, Jul 16, 2014 at 2:00 PM, Xiaohua Chen <xiaohua.chen@gmail.com>
> wrote:
>> Hi Experts,
>> I am new to Hadoop.  I would like to get some help from you:
>> Our current HDFS java client works fine with hadoop server which has
>> NO Kerberos security enabled. We use HDFS lib e.g.
>> org.apache.hadoop.fs.*.
>>  Now we need to change it to work with Kerberosed Hadoop server.  Can
>> you let me know what changes are needed ?
>> Thanks and regards,
>> Sophie
> NOTICE: This message is intended for the use of the individual or entity to
> which it is addressed and may contain information that is confidential,
> privileged and exempt from disclosure under applicable law. If the reader of
> this message is not the intended recipient, you are hereby notified that any
> printing, copying, dissemination, distribution, disclosure or forwarding of
> this communication is strictly prohibited. If you have received this
> communication in error, please contact the sender immediately and delete it
> from your system. Thank You.

View raw message