Cloudera Community

Support Questions

Find answers, ask questions, and share your expertise
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Advanced Search
Solved Go to solution

HBASE replication add_peer giving NoAuth error Kerberized clusters with same realm two different service ids

Labels:
avatar
author-rank 2rajukv
Rising Star

Created ‎09-27-2016 06:12 PM

hbase(main):002:0> add_peer '1',"zknode1,zknode2,zknode3:2181/hbase-secure"

ERROR: KeeperErrorCode = NoAuth for /hbase-secure/replication/peers

Here is some help for this command: A peer can either be another HBase cluster or a custom replication endpoint. In either case an id must be specified to identify the peer.

Background:

hbase(Dev Cluster) with service id dev-hbase --> hbase(QA Cluster) with service id qa-hbase.

3,482 Views
0 Kudos
1 ACCEPTED SOLUTION

avatar
author-rank Enis author-rank
Guru

Created ‎09-27-2016 06:20 PM

You are probably running into https://issues.apache.org/jira/browse/HBASE-1514.

In secure clusters, you should run the zkcli command with --auth-as-server parameter. Like this: 

hbase --auth-as-server zkcli

In newer versions of HDP, the patch should be there. Otherwise, you can get this working with something like: 

HBASE_OPTS="$HBASE_OPTS -Djava.security.auth.login.config=/usr/hdp/current/hbase-regionserver/conf/hbase_master_jaas.conf hbase zkcli

Please note that the jaas.conf file that you add to the HBASE_OPTS before running the zkcli command should match what you have for your master and regionservers.

View solution in original post

2,566 Views
2 REPLIES 2

avatar
author-rank Enis author-rank
Guru

Created ‎09-27-2016 06:20 PM

You are probably running into https://issues.apache.org/jira/browse/HBASE-1514.

In secure clusters, you should run the zkcli command with --auth-as-server parameter. Like this: 

hbase --auth-as-server zkcli

In newer versions of HDP, the patch should be there. Otherwise, you can get this working with something like: 

HBASE_OPTS="$HBASE_OPTS -Djava.security.auth.login.config=/usr/hdp/current/hbase-regionserver/conf/hbase_master_jaas.conf hbase zkcli

Please note that the jaas.conf file that you add to the HBASE_OPTS before running the zkcli command should match what you have for your master and regionservers.

2,567 Views

avatar
author-rank 2rajukv
Rising Star

Created ‎09-27-2016 06:31 PM

Thanks @Enis

https://hortonworks.secure.force.com/articles/en_US/Issue/Hbase-replication-command-to-add-peer-fail...

2,566 Views
0 Kudos
Announcements
What's New @ Cloudera
Cloudera Data Engineering 1.23: Access Spark from Your Favor...
What's New @ Cloudera
HBase REST server scaling support is Generally Available
What's New @ Cloudera
New CLI option in the update-database command
What's New @ Cloudera
New Action menu item in the Cloudera Operational Database UI
What's New @ Cloudera
Get the list of supported instance types in the Cloudera Ope...
View More Announcements