Support Questions
Find answers, ask questions, and share your expertise

Define HDF users on active directory instead of passwd



we are not allowed to create "local users" on our *nix servers, all our users are defined on active directory and automatically synced with the server (using something similar to SSSD), even the ones needed by 3rd party products.

We are now planning to use Hortonworks Data Flow, is there any problem if we define the HDF users (kafka, nifi, ambari-qa, ams, infra-solr, storm.. etc.) together with the proper primary group (hadoop) on Active Directory instead of /etc/passwd?

Will this configuration be compatible with Kerberos*?

Is there any other limitation I should keep in account?

* (Kerberos and Unix Users would be created in two different Organization Units)



For anybody looking at the same problem, everything works with the above mentioned configuration.

; ;