The following commit https://github.com/apache/hadoop/commit/dc17bda4b677e30c02c2a9a053895a43e41f7a12 introduced a "SecurityEnabled" field in the JMX output for the NameNode. I believe it would be nice to add this same change to the JMX output of other services: Secondary Namenode, ResourceManager, NodeManagers, DataNodes, etc. So that it can be queried whether Security is enabled in all JMX resources.
The reason I am suggesting this feature / improvement is that I think it would provide a clean way to check whether your cluster is completely Kerberized or not. I don't think there is an easy/clean way to do this now, other than checking the logs, checking ports etc.?
The file where the change was made is hadoop-hdfs/src/main/java/org/apache/hadoop/hdfs/server/namenode/NameNode.java has the following function now:
I would be happy to develop a patch if it seems useful by others as well?
This is a snippet from the JMX output from the NameNode in case security is not enabled: