Currently when failed to connect, one can only see logs at debug level with a vague SocketTimeoutException. (Luckily in the env I saw this,
HADOOP-10015 was not present, so the last WARN log was printed.)
The issue was then fixed by opening up the KMS server port.
This jira is to propose we add specific loggings in this case, to help user easily identify the problem.