Support Questions

Find answers, ask questions, and share your expertise
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Advanced Search
Announcements
Check out our newest addition to the community, the Cloudera Data Analytics (CDA) group hub.

Is it necessary to use a keytab for user HTTP when kerberizing Solr?

Labels:
johannes_peter
New Contributor

Created ‎06-29-2017 11:33 AM

All guides describing how to kerberize Apache Solr say that the HTTP-user has to be used as principal and that a keytab for user HTTP has to be created. Can you say why? Is it possible to use a different user?

484 Views
0 Kudos
1 REPLY 1

ibhatt
Contributor

Created ‎06-29-2017 12:00 PM

@Johannes Peter The Kerberos plugin uses SPNego to negotiate authentication. HTTP indicates the type of requests which this service principal will be used to authenticate. The HTTP/ in the service principal is a must for SPNego to work with requests to Solr over HTTP.

398 Views
0 Kudos
Take a Tour of the Community
Don't have an account?
Register
Your experience may be limited. Sign in to explore more.
Announcements
What's New @ Cloudera
Cloudera Operational Database (COD) UI supports creating a smaller cluster using a predefined Data Lake template
What's New @ Cloudera
Cloudera Operational Database (COD) supports scaling up the clusters vertically
Product Announcements
CDP Public Cloud: April 2023 Release Summary
What's New @ Cloudera
Cloudera Machine Learning launches "Add Data" feature to simplify data ingestion
What's New @ Cloudera
Simplify Data Access with Custom Connection Support in CML
View More Announcements