In KerberosAuthenticator we construct the principal as follows:
Seems like we should use the configured hadoop.http.authentication.kerberos.principal instead right?
I hit this issue as a distcp using webhdfs://localhost fails because HTTP/localhost is not in the kerb DB but using webhdfs://eli-thinkpad works because HTTP/eli-thinkpad is (and is my configured principal). distcp using Hftp://localhost with the same config works so it looks like this check is webhdfs specific for some reason (webhdfs is using spnego and hftp is not?).
|Affects Version/s||2.1.0-alpha [ 12321441 ]|
|Status||Open [ 1 ]||Resolved [ 5 ]|
|Resolution||Invalid [ 6 ]|
|Field||Original Value||New Value|
|Affects Version/s||2.0.0-alpha [ 12320352 ]|
|Affects Version/s||2.0.1-alpha [ 12321441 ]|
|Affects Version/s||3.0.0 [ 12320357 ]|