Support Questions
Find answers, ask questions, and share your expertise
Announcements
Alert: Welcome to the Unified Cloudera Community. Former HCC members be sure to read and learn how to activate your account here.

Adding User in kerberised Cluster

Solved Go to solution

Adding User in kerberised Cluster

Explorer

How to add user in kerberized cluster?

I have AD integration with kerberos?

Do we need to add user on OS level ? @Shelton

1 ACCEPTED SOLUTION

Accepted Solutions

Re: Adding User in kerberised Cluster

Contributor

Best way is to join your nodes using SSSD service it will solve users directory creation problem + group mapping. 

6 REPLIES 6

Re: Adding User in kerberised Cluster

Expert Contributor

@kiranpune Which users are you talking about. CM users or some other user?

Re: Adding User in kerberised Cluster

Explorer
##- cm as well as some other user-##

Re: Adding User in kerberised Cluster

Community Manager

@kiranpune ,

 

What is your CM version? Here is the latest documentation on Cloudera website. The step 3, 6 and 7 maybe the answer to your question.

https://docs.cloudera.com/cloudera-manager/7.0.3/security-kerberos-authentication/topics/cm-security...

Thanks,

Li

Li Wang, Technical Solution Manager


Was your question answered? Make sure to mark the answer as the accepted solution.
If you find a reply useful, say thanks by clicking on the thumbs up button.

Learn more about the Cloudera Community:

Terms of Service

Community Guidelines

How to use the forum

Highlighted

Re: Adding User in kerberised Cluster

Explorer

Suppose we added user peter in active directory then do we need to add OS level

Re: Adding User in kerberised Cluster

Community Manager

Hi @kiranpune ,

 

Based on step 7 below, the answer is yes that you need to add the user in OS level.

https://docs.cloudera.com/cloudera-manager/7.0.3/security-kerberos-authentication/topics/cm-security...

 

Here:

Make sure all hosts in the cluster have a Linux user account with the same name as the first component of that user's principal name. For example, the Linux account joe should exist on every box if the user's principal name is joe@YOUR-REALM.COM. You can use LDAP for this step if it is available in your organization.

 

Thanks,

Li

Li Wang, Technical Solution Manager


Was your question answered? Make sure to mark the answer as the accepted solution.
If you find a reply useful, say thanks by clicking on the thumbs up button.

Learn more about the Cloudera Community:

Terms of Service

Community Guidelines

How to use the forum

Re: Adding User in kerberised Cluster

Contributor

Best way is to join your nodes using SSSD service it will solve users directory creation problem + group mapping. 

Don't have an account?
Coming from Hortonworks? Activate your account here