I got an HDP 3.0 Ambari 2.7 Cluster on AWS EC2, which i'm trying to integrate with a Company LDAP.
Been having issues when trying to continue on the last step, when the wizard Tests Kerberos Connection, it asks me for the Admin principal and password. When doing that, i get an error on the test request (after the Credentials PUT request). When looking at the logs, i see:
It seems you are trying to use both MIT & AD together while enabling kerberos through Ambari. This is not possible at once.
If you want to use MIT KDC for hadoop service and AD/LDAP for user authentication you need to first enable kerberos using MIT KDC only and once your kerberos is enabled successfully go for configuring "One Way trust between MIT KDC and Active Directory".
With this setup all your hadoop services will be authenticated against MIT KDC and AD users will be autheticated against Active Directory. You can refer below links to do this setup: