Uploaded image for project: 'HBase'
  1. HBase
  2. HBASE-3582

HMaster and HRegionServer should be able to login from Kerberos keytab when running on security-enabled Hadoop

Log workAgile BoardRank to TopRank to BottomAttach filesAttach ScreenshotBulk Copy AttachmentsBulk Move AttachmentsVotersWatch issueWatchersCreate sub-taskConvert to sub-taskMoveLinkCloneLabelsUpdate Comment AuthorReplace String in CommentUpdate Comment VisibilityDelete Comments
    XMLWordPrintableJSON

Details

    • Bug
    • Status: Closed
    • Major
    • Resolution: Fixed
    • 0.90.0, 0.90.1
    • 0.90.2
    • security
    • None

    Description

      Currently HBase can run on top of Hadoop 0.20 with security APIs, but only using the "simple" authentication method. There is currently no configuration or hooks for the HBase process to obtain Kerberos credentials so it can authenticate against secure Hadoop.

      We should extend the current org.apache.hadoop.hbase.security.User hooks to allow obtaining credentials from a keytab file when security is enabled.

      Attachments

        Issue Links

        relates to

        New Feature - A new feature of the product, which has yet to be developed. ACCUMULO-404 Support running on-top of Kerberos-enabled HDFS

        • Major - Major loss of function.
        • Resolved

        Activity
          This comment will be Viewable by All Users Viewable by All Users
          Cancel

          People

            ghelmling Gary Helmling Assign to me
            ghelmling Gary Helmling
            Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved:

              Slack

                Issue deployment