Hadoop HDFS
  1. Hadoop HDFS
  2. HDFS-6829

DFSAdmin refreshSuperUserGroupsConfiguration failed in security cluster

    Details

    • Type: Bug Bug
    • Status: Closed
    • Priority: Minor Minor
    • Resolution: Fixed
    • Affects Version/s: 2.4.1
    • Fix Version/s: 2.6.0
    • Component/s: tools
    • Labels:
      None
    • Hadoop Flags:
      Reviewed

      Description

      When we run command "hadoop dfsadmin -refreshSuperUserGroupsConfiguration", it failed and report below message:
      14/08/05 21:32:06 WARN security.MultiRealmUserAuthentication: The serverPrincipal = doesn't confirm to the standards
      refreshSuperUserGroupsConfiguration: null

      After check the code, I found the bug was triggered by below reasons:
      1. We didn't set CommonConfigurationKeys.HADOOP_SECURITY_SERVICE_USER_NAME_KEY, which needed by RefreshUserMappingsProtocol. And in DFSAdmin, if no CommonConfigurationKeys.HADOOP_SECURITY_SERVICE_USER_NAME_KEY set, it will try to use DFSConfigKeys.DFS_NAMENODE_KERBEROS_PRINCIPAL_KEY: conf.set(CommonConfigurationKeys.HADOOP_SECURITY_SERVICE_USER_NAME_KEY, conf.get(DFSConfigKeys.DFS_NAMENODE_KERBEROS_PRINCIPAL_KEY, ""));
      2. But we set DFSConfigKeys.DFS_NAMENODE_KERBEROS_PRINCIPAL_KEY in hdfs-site.xml
      3. DFSAdmin didn't load hdfs-site.xml

      1. HDFS-6829.patch
        0.6 kB
        zhaoyunjiong

        Activity

        No work has yet been logged on this issue.

          People

          • Assignee:
            zhaoyunjiong
            Reporter:
            zhaoyunjiong
          • Votes:
            0 Vote for this issue
            Watchers:
            5 Start watching this issue

            Dates

            • Created:
              Updated:
              Resolved:

              Development