Cloudera Community

Support Questions

Find answers, ask questions, and share your expertise
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Advanced Search
Solved Go to solution

Difference between apache knox and kerberos

Labels:
avatar
author-rank amoussoubaruch1
Rising Star

Created ‎10-18-2016 02:26 PM

Hello evryone,

I just start with secure my cluster HDP. And i don't well undestand the difference between apache knox and Kerberos.

can you please help my to understand that.

Thanks

AD-B

10,278 Views
1 ACCEPTED SOLUTION

avatar
author-rank WhiteHa author-rank
Expert Contributor

Created ‎10-18-2016 02:48 PM

@Baruch AMOUSSOU DJANGBAN Apache Knox is sort of Reverse Proxy which seats on Security Perimeter behind firewall and provide single point of access to underlying Hadoop services. An User will authenticate to Knox which can be configured to use Active Directory/LDAP/SAML-Based Identity Provider. Once User is authenticated with Knox, Knox will use it's own Kerberos Keytab to authenticate with other Hadoop services securely. Note: Apache Knox is not alternative to Kerberos.

View solution in original post

5,201 Views
4 REPLIES 4

avatar
author-rank WhiteHa author-rank
Expert Contributor

Created ‎10-18-2016 02:48 PM

@Baruch AMOUSSOU DJANGBAN Apache Knox is sort of Reverse Proxy which seats on Security Perimeter behind firewall and provide single point of access to underlying Hadoop services. An User will authenticate to Knox which can be configured to use Active Directory/LDAP/SAML-Based Identity Provider. Once User is authenticated with Knox, Knox will use it's own Kerberos Keytab to authenticate with other Hadoop services securely. Note: Apache Knox is not alternative to Kerberos.

5,202 Views

avatar
author-rank amoussoubaruch1
Rising Star

Created ‎10-18-2016 03:03 PM

@Krishna Pandey thanks for your answer

5,201 Views
0 Kudos

avatar
author-rank TimothySpann author-rank
Master Guru

Created on ‎10-18-2016 03:05 PM - edited ‎08-19-2019 01:46 AM

http://hortonworks.com/apache/knox-gateway/

https://knox.apache.org/

Knox sits on top of Kerberos

Try this out:

http://hortonworks.com/hadoop-tutorial/securing-hadoop-infrastructure-apache-knox/

8653-knox-overview.gif

5,201 Views
0 Kudos

avatar
author-rank amoussoubaruch1
Rising Star

Created ‎10-18-2016 03:18 PM

@Timothy Spann thanks for your answer

5,201 Views
0 Kudos
Announcements
What's New @ Cloudera
Cloudera Data Engineering 1.23: Access Spark from Your Favor...
What's New @ Cloudera
HBase REST server scaling support is Generally Available
What's New @ Cloudera
New CLI option in the update-database command
What's New @ Cloudera
New Action menu item in the Cloudera Operational Database UI
What's New @ Cloudera
Get the list of supported instance types in the Cloudera Ope...
View More Announcements