Setup
- Active Directory with LDAPs
- HDP 2.5 (HDFS, Ranger, KMS, Enabled Kerberos )
I've created user called "test" on AD and it's showing in Ranger Users list then created policy in Ranger to test user to allow /user/, then in KMS created key called test.
Question
1. Do I need to add Linux client machine in domain or create local OS user to access the /user via test user ?
2. Do I need to create keytab on AD and share with test user ?
3. How does this KMS works ?