Cloudera Community

Support Questions

Find answers, ask questions, and share your expertise
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Advanced Search

Cloudera after setting up custom kerberos for hive: Unable to read HiveServer2 configs from ZooKeeper (state=,code=0)

Labels:
avatar
author-rank sibin
New Contributor

Created ‎05-30-2024 12:16 AM

After setting custom kerberos princ for hive: Unable to read HiveServer2 configs from ZooKeeper (state=,code=0). But if i use default kerb principal i am able to logon to hive.

followed this doc
https://docs.cloudera.com/cdp-private-cloud-base/7.1.9/security-kerberos-authentication/topics/hive-...

 

SLF4J: See http://www.slf4j.org/codes.html#multiple_bindings for an explanation.
SLF4J: Actual binding is of type [org.apache.logging.slf4j.Log4jLoggerFactory]
Connecting to jdbc:hive2://im19-vm4.eng.cohesity.com:2181,im19-vm5.eng.cohesity.com:2181,im19-vm6.eng.cohesity.com:2181/default;password=root;principal=khive/_HOST@im19-vm4.realm;serviceDiscoveryMode=zooKeeper;ssl=true;sslTrustStore=/var/lib/cloudera-scm-agent/agent-cert/cm-auto-global_truststore.jks;trustStorePassword=9xSdfOCgyzHPGv24yUYU9QOob4sKxiey5GsTnZgK7oB;trustStoreType=jks;user=root;zooKeeperNamespace=hiveserver2
Error: org.apache.hive.jdbc.ZooKeeperHiveClientException: Unable to read HiveServer2 configs from ZooKeeper (state=,code=0)
Beeline version 3.1.3000.7.1.9.0-387 by Apache Hive
beeline>

=====================================================================================
zookeeper checks
[zk: localhost:2181(CONNECTED) 2] ls /
[confstore, hbase, hiveserver2, rmstore, zookeeper]
[zk: localhost:2181(CONNECTED) 3] ls /hiveserver2
[]

 

 

544 Views
2 REPLIES 2

avatar
author-rank RAGHUY author-rank
Super Collaborator

Created ‎05-30-2024 02:30 AM

@sibin 

Ensure that the /hiveserver2 znode exists and contains the necessary configurations. The fact that ls /hiveserver2 returns an empty list suggests that HiveServer2 has not correctly registered its configurations in ZooKeeper.

Look into the HiveServer2 logs for any errors or warnings related to ZooKeeper or Kerberos

Create Kerberos Principal
kadmin.local -q "addprinc -randkey khive/im19-vm4@IM19-V4.REALM"
Generate Keytab File
kadmin.local -q "xst -k /etc/security/keytabs/khive.keytab khive/im19-vm4@IM19-V4.REALM"
Verify Keytab File
klist -k /etc/security/keytabs/khive.keytab
Set Permissions
chown hive:hive /etc/security/keytabs/khive.keytab
chmod 400 /etc/security/keytabs/khive.keytab
Update hive-site.xml
<property>
<name>hive.server2.authentication.kerberos.principal</name>
<value>khive/im19-vm4@IM19-V4.REALM</value>
</property>
<property>
<name>hive.server2.authentication.kerberos.keytab</name>
<value>/etc/security/keytabs/khive.keytab</value>
</property>


Restart hiveserver2

 

531 Views

avatar
author-rank DianaTorres author-rank
Community Manager

Created ‎06-03-2024 03:49 PM

@sibin Has the reply helped resolve your issue? If so, please mark the appropriate reply as the solution, as it will make it easier for others to find the answer in the future. Thanks.

Regards,

Diana Torres,
Community Moderator

Was your question answered? Make sure to mark the answer as the accepted solution.
If you find a reply useful, say thanks by clicking on the thumbs up button.
Learn more about the Cloudera Community:
484 Views
Announcements
What's New @ Cloudera
Cloudera Data Engineering 1.23: Access Spark from Your Favor...
What's New @ Cloudera
HBase REST server scaling support is Generally Available
What's New @ Cloudera
New CLI option in the update-database command
What's New @ Cloudera
New Action menu item in the Cloudera Operational Database UI
What's New @ Cloudera
Get the list of supported instance types in the Cloudera Ope...
View More Announcements