User A was not able to write a file to HDFS Encryption Zone. It was resolved by adding proxy user A in kms-site.xml
However, the logs showed :
Possible Solution :
So the message which says the user was successfully authenticated comes from AuthenticationFilter.java. However, when the filter on DelegationTokenAuthenticationFilter is called it hits an exception there and there is no log message there. This leads to the confusion that we have had a success while the exception happens in the next class.