Uploaded image for project: 'HBase'
  1. HBase
  2. HBASE-3582

HMaster and HRegionServer should be able to login from Kerberos keytab when running on security-enabled Hadoop

    XMLWordPrintableJSON

Details

    • Bug
    • Status: Closed
    • Major
    • Resolution: Fixed
    • 0.90.0, 0.90.1
    • 0.90.2
    • security
    • None

    Description

      Currently HBase can run on top of Hadoop 0.20 with security APIs, but only using the "simple" authentication method. There is currently no configuration or hooks for the HBase process to obtain Kerberos credentials so it can authenticate against secure Hadoop.

      We should extend the current org.apache.hadoop.hbase.security.User hooks to allow obtaining credentials from a keytab file when security is enabled.

      Attachments

        1. HBASE-3582_0.90.patch
          19 kB
          Gary Helmling
        2. HBASE-3582_trunk.patch
          20 kB
          Gary Helmling

        Issue Links

          relates to

          New Feature - A new feature of the product, which has yet to be developed. ACCUMULO-404 Support running on-top of Kerberos-enabled HDFS

          • Major - Major loss of function.
          • Resolved

          Activity

            People

              ghelmling Gary Helmling
              ghelmling Gary Helmling
              Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: