relatively new to using HDF / HDP and Kerberos.
We have setup a Kerboerized HDF cluster (3.0.1) and are using only
Zookeeper and Kafka. The cluster is up
and functioning fine. Where we are
struggling is around is with Java Kafka clients authenticating to the
cluster. Is there some documented best
practices for authentication?
Our Java Kafka
clients are Windows Services running as an AD service account. Should be generate a keytab for the service
account and have our kafkaClient jaas file referrence that generated keytab? Or should write a script to run kinit (at
some pre-determined time interval) with the service accounts credential to
update the TGT in cache?