question Re: HDFS is not accessible from an user after kerberos implementation in Support Questions

question Re: HDFS is not accessible from an user after kerberos implementation in Support Questions https://community.cloudera.com/t5/Support-Questions/HDFS-is-not-accessible-from-an-user-after-kerberos/m-p/317541#M227214 <BLOCKQUOTE><HR /><a href="https://community.cloudera.com/t5/user/viewprofilepage/user-id/20288">@Shelton</a> wrote:  [konar@simba ~]$ kinit -kt konar.keytab konar@KENYA.KEThe above should throw any error Now validate the user has a valid ticket[konar@simba ~]$ klist Ticket cache: FILE:/tmp/krb5cc_1024 Default principal: konar@KENYA.KEValid starting Expires Service principal 08/25/2019 18:53:40 08/26/2019 18:53:40 krbtgt/KENYA.KE@KENYA.KEBravo you have a valid ticket and hence access to the cluster let's validate that the below  HDFS list  directory should succeed <HR /></BLOCKQUOTE>I am getting following error after executing kinit -kt command for hive user = [hive@server-hdp ~]$ kinit -kt hive.keytab hive@MYDOMAIN.COM kinit: Password incorrect while getting initial credentials Pls suggest how to solve this issue thanks. My krb5.conf =  <LI-CODE lang="markup">[hive@server-hdp ~]$ cat /etc/krb5.conf [libdefaults] #renew_lifetime = 7d forwardable = true default_realm = MYDOMAIN.COM ticket_lifetime = 24h dns_lookup_realm = false dns_lookup_kdc = false default_ccache_name = /tmp/krb5cc_%{uid} #default_tgs_enctypes = aes des3-cbc-sha1 rc4 des-cbc-md5 #default_tkt_enctypes = aes des3-cbc-sha1 rc4 des-cbc-md5 [domain_realm] mydomain.com = MYDOMAIN.COM [logging] default = FILE:/var/log/krb5kdc.log admin_server = FILE:/var/log/kadmind.log kdc = FILE:/var/log/krb5kdc.log [realms] MYDOMAIN.COM = { admin_server = server-hdp.mydomain.com kdc = server-hdp.mydomain.com }</LI-CODE>keytab works for user1 & user1 can access hdfs without any issue. Regards,Amey. Wed, 02 Jun 2021 10:26:43 GMT dmharshit 2021-06-02T10:26:43Z