Return-Path: 
 <user-return-17040-apmail-hadoop-hdfs-user-archive=hadoop.apache.org@hadoop.apache.org>
X-Original-To: apmail-hadoop-hdfs-user-archive@minotaur.apache.org
Delivered-To: apmail-hadoop-hdfs-user-archive@minotaur.apache.org
Received: from mail.apache.org (hermes.apache.org [140.211.11.3])
	by minotaur.apache.org (Postfix) with SMTP id 8299711EB2
	for <apmail-hadoop-hdfs-user-archive@minotaur.apache.org>;
 Mon, 15 Sep 2014 20:45:01 +0000 (UTC)
Received: (qmail 12268 invoked by uid 500); 15 Sep 2014 20:44:51 -0000
Delivered-To: apmail-hadoop-hdfs-user-archive@hadoop.apache.org
Received: (qmail 12141 invoked by uid 500); 15 Sep 2014 20:44:50 -0000
Mailing-List: contact user-help@hadoop.apache.org; run by ezmlm
Precedence: bulk
List-Help: <mailto:user-help@hadoop.apache.org>
List-Unsubscribe: <mailto:user-unsubscribe@hadoop.apache.org>
List-Post: <mailto:user@hadoop.apache.org>
List-Id: <user.hadoop.apache.org>
Reply-To: user@hadoop.apache.org
Delivered-To: mailing list user@hadoop.apache.org
Received: (qmail 12130 invoked by uid 99); 15 Sep 2014 20:44:50 -0000
Received: from nike.apache.org (HELO nike.apache.org) (192.87.106.230)
    by apache.org (qpsmtpd/0.29) with ESMTP; Mon, 15 Sep 2014 20:44:50 +0000
X-ASF-Spam-Status: No, hits=1.5 required=5.0
	tests=HTML_MESSAGE,RCVD_IN_DNSWL_LOW,SPF_PASS
X-Spam-Check-By: apache.org
Received-SPF: pass (nike.apache.org: domain of jayunit100.apache@gmail.com
 designates 209.85.220.53 as permitted sender)
Received: from [209.85.220.53] (HELO mail-pa0-f53.google.com) (209.85.220.53)
    by apache.org (qpsmtpd/0.29) with ESMTP; Mon, 15 Sep 2014 20:44:24 +0000
Received: by mail-pa0-f53.google.com with SMTP id rd3so7115793pab.26
        for <user@hadoop.apache.org>; Mon, 15 Sep 2014 13:44:22 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=gmail.com; s=20120113;
        h=mime-version:in-reply-to:references:date:message-id:subject:from:to
         :content-type;
        bh=cVgSoVHLxWvW0qTZl/s0ijCI+vpcT6q+8pIExcjNChI=;
        b=jzzPcNN8/Zd2ZWBIZbCSnb4vhmQ0kR2TszRLt3csdMXIrVRKluNYO/IhNa+NKlxemR
         iWBeGgvYMC54w8lewOejOKcXDNKpSq37l1sIeg7o9WQVrUoeXDAwFIenEQq1d3GqLHOc
         GB0vOQX8HybkZ8V9W9pl1ZNaWD4bk9eGkdplpi4VJe/8TdoF6Oj9lmyCaNffngh6lcTY
         bkyF/ZNB2Isrkjg5WzW1muL+oIpMvj+qmEOgh+alSuk04gn8TNnVTtlK/rbd3zRqCIHp
         dcIpJQt/MUJ35TiYJ0mTm1jaaHbZvsBckvEUyKEv3PudbO4r/t+3ix6L6AM+b4pvAUx3
         2g1A==
MIME-Version: 1.0
X-Received: by 10.70.90.237 with SMTP id bz13mr45371373pdb.110.1410813862740;
 Mon, 15 Sep 2014 13:44:22 -0700 (PDT)
Received: by 10.70.72.161 with HTTP; Mon, 15 Sep 2014 13:44:22 -0700 (PDT)
In-Reply-To: 
 <CAEo-6+SCMPBqUjAW6ew_M8GdfdBPPerbgS5N5hGbUdy6_uqFrQ@mail.gmail.com>
References: 
 <CAKmsfA30KyxhyR38jYvRKKWGJ9ray7n0KJfFKVH8SWVVngO_4w@mail.gmail.com>
	<CAEo-6+SCMPBqUjAW6ew_M8GdfdBPPerbgS5N5hGbUdy6_uqFrQ@mail.gmail.com>
Date: Mon, 15 Sep 2014 16:44:22 -0400
Message-ID: 
 <CACVCA=eZJp0m9n2Qaohx89Q2Mm2jL6yBMDcWvYjrbFpG-3rcrQ@mail.gmail.com>
Subject: Re: how to setup Kerberozed Hadoop ?
From: jay vyas <jayunit100.apache@gmail.com>
To: "common-user@hadoop.apache.org" <user@hadoop.apache.org>
Content-Type: multipart/alternative; boundary=001a11c25496220864050320b3e3
X-Virus-Checked: Checked by ClamAV on apache.org

--001a11c25496220864050320b3e3
Content-Type: text/plain; charset=UTF-8

Once you read the the docs and get a base understanding.. here is my recipe
you can try for a maintainable , easy to manage setup.

- Puppet-IPA (puppet recipe for FreeIPA for setting up kerberos realms and
users)
- then layer in apache bigtop's puppet hadoop modules (for installation and
setup of the hadoop cluster)
- then do the glue necessary to kerberize existing, running hadoop services
(free ipa will set up the kerberos realm for you, add users, and so on -
all you have to do is add the kerberos security info into the core-site.xml)



On Mon, Sep 15, 2014 at 3:52 PM, Shahab Yunus <shahab.yunus@gmail.com>
wrote:

> Hi
>
> Have you already looked at the existing documentation?
>
> For apache
>
> http://hadoop.apache.org/docs/r2.3.0/hadoop-project-dist/hadoop-common/SecureMode.html
>
> -For cloudera
>
> http://www.cloudera.com/content/cloudera-content/cloudera-docs/CDH4/4.6.0/CDH4-Security-Guide/cdh4sg_topic_3.html
>
> Some random blogs:
> http://blog.godatadriven.com/kerberos-cloudera-setup.html
>
> Regards,
> Shahab
>
> On Mon, Sep 15, 2014 at 3:47 PM, Xiaohua Chen <xiaohua.chen@gmail.com>
> wrote:
>
>> Hi experts:
>>
>> I am new to Hadoop. We want to setup a Kerberozed hadoop for testing.
>>
>> Can you share any guide lines or instructions on how to setup a
>> Kerberozed hadoop env ?
>>
>> Thanks.
>>
>> Sophia
>>
>
>


-- 
jay vyas

--001a11c25496220864050320b3e3
Content-Type: text/html; charset=UTF-8
Content-Transfer-Encoding: quoted-printable

<div dir=3D"ltr"><div>Once you read the the docs and get a base understandi=
ng.. here is my recipe you can try for a maintainable , easy to manage setu=
p.<br><br>- Puppet-IPA (puppet recipe for FreeIPA for setting up kerberos r=
ealms and users)<br></div><div>- then layer in apache bigtop&#39;s puppet h=
adoop modules (for installation and setup of the hadoop cluster)<br></div><=
div>- then do the glue necessary to kerberize existing, running hadoop serv=
ices (free ipa will set up the kerberos realm for you, add users, and so on=
 - all you have to do is add the kerberos security info into the core-site.=
xml)<br><br><br></div></div><div class=3D"gmail_extra"><br><div class=3D"gm=
ail_quote">On Mon, Sep 15, 2014 at 3:52 PM, Shahab Yunus <span dir=3D"ltr">=
&lt;<a href=3D"mailto:shahab.yunus@gmail.com" target=3D"_blank">shahab.yunu=
s@gmail.com</a>&gt;</span> wrote:<br><blockquote class=3D"gmail_quote" styl=
e=3D"margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div di=
r=3D"ltr">Hi<div><br></div><div>Have you already looked at the existing doc=
umentation?</div><div><br></div><div>For apache</div><div><a href=3D"http:/=
/hadoop.apache.org/docs/r2.3.0/hadoop-project-dist/hadoop-common/SecureMode=
.html" target=3D"_blank">http://hadoop.apache.org/docs/r2.3.0/hadoop-projec=
t-dist/hadoop-common/SecureMode.html</a><br></div><div><br></div><div>-For =
cloudera</div><div><a href=3D"http://www.cloudera.com/content/cloudera-cont=
ent/cloudera-docs/CDH4/4.6.0/CDH4-Security-Guide/cdh4sg_topic_3.html" targe=
t=3D"_blank">http://www.cloudera.com/content/cloudera-content/cloudera-docs=
/CDH4/4.6.0/CDH4-Security-Guide/cdh4sg_topic_3.html</a><br></div><div><br><=
/div><div>Some random blogs:</div><div><a href=3D"http://blog.godatadriven.=
com/kerberos-cloudera-setup.html" target=3D"_blank">http://blog.godatadrive=
n.com/kerberos-cloudera-setup.html</a><br></div><div><br></div><div>Regards=
,</div><div>Shahab</div></div><div class=3D"HOEnZb"><div class=3D"h5"><div =
class=3D"gmail_extra"><br><div class=3D"gmail_quote">On Mon, Sep 15, 2014 a=
t 3:47 PM, Xiaohua Chen <span dir=3D"ltr">&lt;<a href=3D"mailto:xiaohua.che=
n@gmail.com" target=3D"_blank">xiaohua.chen@gmail.com</a>&gt;</span> wrote:=
<br><blockquote class=3D"gmail_quote" style=3D"margin:0 0 0 .8ex;border-lef=
t:1px #ccc solid;padding-left:1ex">Hi experts:<br>
<br>
I am new to Hadoop. We want to setup a Kerberozed hadoop for testing.<br>
<br>
Can you share any guide lines or instructions on how to setup a<br>
Kerberozed hadoop env ?<br>
<br>
Thanks.<br>
<br>
Sophia<br>
</blockquote></div><br></div>
</div></div></blockquote></div><br><br clear=3D"all"><br>-- <br><div dir=3D=
"ltr">jay vyas<br></div>
</div>

--001a11c25496220864050320b3e3--