How we can setup spengo authentication for client when Client and HDP cluster are in different domains.
My hdp cluster is running with ENV.COM.I have installed KDC server.
My Mac is on corporate domain on global.company.com.When i do a klist on mac,it gives me ticket from my corporate domain controller.i cannot use keytab of cluster.
Can someoen help?
While doing "kinit" you can pass your own "krb5.conf" file which has the info about the KDC/AD server of your own choice.
env KRB5_CONFIG=/PATH/TO/YOUR/CUSTOM/krb5.conf kinit $ARG1 $ARG2
@Mudit Kumar You could use your corporate domain and kerberos ticket as long as you have configured one way trust between ENV.COM KDC and your corporate KDC. Here are the steps to perform this configuration:
*** If you found this answer addressed your question, please take a moment to login and click the "accept" link on the answer.