Uploaded image for project: 'Hadoop Common'
  1. Hadoop Common
  2. HADOOP-12426

Add Entry point for Kerberos health check

    Details

    • Type: New Feature
    • Status: Resolved
    • Priority: Minor
    • Resolution: Fixed
    • Affects Version/s: 2.7.1
    • Fix Version/s: 2.8.0, 3.0.0-alpha1
    • Component/s: security
    • Labels:
      None
    • Target Version/s:
    • Hadoop Flags:
      Reviewed
    • Release Note:
      Hadoop now includes a shell command named KDiag that helps with diagnosis of Kerberos misconfiguration problems. Please refer to the Secure Mode documentation for full details on usage of the command.

      Description

      If we a little command line entry point for testing kerberos settings, including some automated diagnostics checks, we could simplify fielding the client-side support calls.

      Specifically

      • check JRE for having java crypto extensions at full key length.
      • network checks: do you know your own name?
      • Is the user kinited in?
      • if a tgt is specified, does it exist?
      • are hadoop security options consistent?

        Attachments

        1. HADOOP-12426-001.patch
          28 kB
          Steve Loughran
        2. HADOOP-12426-002.patch
          28 kB
          Steve Loughran
        3. HADOOP-12426-003.patch
          29 kB
          Steve Loughran
        4. HADOOP-12426-004.patch
          29 kB
          Steve Loughran
        5. HADOOP-12426-006.patch
          37 kB
          Steve Loughran
        6. HADOOP-12426-007.patch
          47 kB
          Steve Loughran
        7. HADOOP-12426-008.patch
          48 kB
          Steve Loughran
        8. HADOOP-12426-009.patch
          57 kB
          Steve Loughran
        9. HADOOP-12426-010.patch
          57 kB
          Steve Loughran

          Issue Links

            Activity

              People

              • Assignee:
                stevel@apache.org Steve Loughran
                Reporter:
                stevel@apache.org Steve Loughran
              • Votes:
                0 Vote for this issue
                Watchers:
                17 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved: