Community Articles

sgowda · ‎08-24-2018

There are at times we would need to move kerberos database to different nodes or upgrade the OS of KDC node ( for e.x CentOS6 to CentOS7 ). Obviously you would not want to lose you the kdc users especially if your HDP cluster is configured to use this kdc.

Follow below steps to backup and restore kerberos database.

prerequisite

* Backup the keytab from the HDP cluster under /etc/security/keytabs from all nodes.
* Note down your kdc admin principal and password
* Backup /etc/krb5.conf
* Backup  /var/kerberos directory

Backup

* Take the kerberos database dump using below command ( to be executed on node running kerberos )
kdb5_util dump kdb5_dump.txt
* Safely backup the kdb5_dump.txt.

Restore

* Restore the kerberos database execute below command
kdb5_util load kdb5_dump.txt 
* Restore the /etc/krb5.conf from backup
* Restore /var/kerberos/krb5kdc/kdc.conf from backup
* Restore /var/kerberos/krb5kdc/kadm5.acl from backup
* Run below command to store master principal in stash file ( kdc admin password is required )
kdb5_util stash
* Start KDC server using below command
service krb5kdc start

Cloudera Community

Community Articles

Backup and Restore HDP Kerberos Database

Hortonworks Data Platform (HDP)

Kerberos

Security

HDP to CDP - Atlas backup and restore

NiFi + Registry Backup/Restoration

CDP Public Cloud: Datalake backup and restore

HDP3 to CDP - Atlas backup and restore using Atlas...

manually backup and restore shards before Solr ver...

CDP Private Cloud - Backup and Restore

Simple Backup and Restore of HDFS Data via HDF 3.0...

Restore Hive MySQL database for new Hive service o...

Restore backup hive metastore

Comparison : Kudu Copy Command vs Spark backup uti...