Support Questions

Find answers, ask questions, and share your expertise
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Advanced Search

Configuring HTTP Authentication for HDFS, YARN, MapReduce2, HBase, Oozie, Falcon and Storm

chrsvarma
Expert Contributor

Created on ‎02-21-2017 01:48 AM - edited ‎09-16-2022 04:07 AM

I found this article in HW, but i want to configure it to authenticate against AD instead of local KDC.. Any suggestions?

https://docs.hortonworks.com/HDPDocuments/HDP2/HDP-2.5.3/bk_security/content/_configuring_http_authe...

705 Views
0 Kudos
2 REPLIES 2

Shelton
Mentor

Created ‎02-21-2017 03:18 AM

@Raja Sekhar Chintalapati

Have a look at the attached document it should help you and please let me know when it does!

Preview file
208 KB
616 Views
0 Kudos

pvillard
Guru

Created ‎02-21-2017 09:51 AM

Hi @Raja Sekhar Chintalapati,

The documentation you mention is not specific to a MIT KDC. It is also perfectly valid when using an active directory. You just need to set hadoop.http.authentication.kerberos.principal and hadoop.http.authentication.cookie.domain according to your specific settings.

The parameters are used to allow SPNEGO authentication when accessing some UIs of your cluster. Note that, in some cases, configuration on your browser might be required to use the tickets of your workstation. Example:

https://community.hortonworks.com/articles/28537/user-authentication-from-windows-workstation-to-hd....

https://community.hortonworks.com/articles/76873/configure-mac-and-firefox-to-access-hdphdf-spnego.h...

Hope this helps.

616 Views
0 Kudos
Take a Tour of the Community
Don't have an account?
Register
Your experience may be limited. Sign in to explore more.
Announcements
Community Announcements
January 2023 Community Highlights
Product Announcements
[ANNOUNCE] New Cloudera JDBC Connector 2.6.30 for Impala is Released
What's New @ Cloudera
Cloudera Operational Database (COD) provides a CLI option to enable HBase region canaries
What's New @ Cloudera
Cloudera Operational Database (COD) supports creating an operational database using a predefined Data Lake template
What's New @ Cloudera
Cloudera Operational Database (COD) supports configuring JWT authentication for your HBase clients
View More Announcements