Support Questions
Find answers, ask questions, and share your expertise
Announcements
Alert: Welcome to the Unified Cloudera Community. Former HCC members be sure to read and learn how to activate your account here.

Kerberos Setup Failing

Highlighted

Kerberos Setup Failing

New Contributor

https://community.hortonworks.com/articles/54275/apache-nifi-100-kerberos-authentication.html

I have followed instructions shown from above link : I am testing this on my Mac OSX, using Nifi Version 1.9.0

➜  docker-kdc git:(master) ✗ ./kdc test
Checking boot2docker active... ok
Trying to connect to KDC... at 192.168.99.103:48088... ok
klist command is not showing the principal i have configured which is samar@NIFI.APACHE.ORG


this is my kdc.json

{
  "principals": [
    {
      "id": "samar@NIFI.APACHE.ORG",
      "password": "samar"
    },
    {
      "id": "HTTP/nifi.apache.org@NIFI.APACHE.ORG",
      "password": "http"
    }
  ],
  "domain": "nifi.apache.org",
  "realm": "NIFI.APACHE.ORG",
  "ip": "127.0.0.1",
  "port": 48088
}


I have updated /etc/hosts as below

#127.0.0.1       localhost
255.255.255.255 broadcasthost
::1             localhost
127.0.0.1       localhost nifi.apache.org


when i hit the https://nifi.apache.org:9445/nifi , i see below logs in nifi-app.log

2019-03-22 15:17:45,626 INFO [main] org.apache.nifi.web.server.JettyServer https://localhost:9445/nifi
2019-03-22 15:17:45,627 INFO [main] org.apache.nifi.BootstrapListener Successfully initiated communication with Bootstrap
2019-03-22 15:17:45,628 INFO [main] org.apache.nifi.NiFi Controller initialization took 19795119826 nanoseconds (19 seconds).
2019-03-22 15:19:42,144 INFO [Write-Ahead Local State Provider Maintenance] org.wali.MinimalLockingWriteAheadLog org.wali.MinimalLockingWriteAheadLog@27a57c66 checkpointed with 4 Records and 0 Swap Files in 13 milliseconds (Stop-the-world time = 5 milliseconds, Clear Edit Logs time = 5 millis), max Transaction ID 11
2019-03-22 15:19:42,391 INFO [pool-10-thread-1] o.a.n.c.r.WriteAheadFlowFileRepository Initiating checkpoint of FlowFile Repository
2019-03-22 15:19:42,392 INFO [pool-10-thread-1] o.a.n.c.r.WriteAheadFlowFileRepository Successfully checkpointed FlowFile Repository with 0 records in 0 milliseconds
2019-03-22 15:19:55,074 WARN [NiFi Web Server-22] o.a.nifi.web.server.HostHeaderHandler Request host header [nifi.apache.org:9445] different from web hostname [localhost(:9445)]. Overriding to [localhost:9445/nifi]
2019-03-22 15:21:23,079 WARN [NiFi Web Server-89] o.a.nifi.web.server.HostHeaderHandler Request host header [nifi.apache.org:9445] different from web hostname [localhost(:9445)]. Overriding to [localhost:9445/nifi/]
2019-03-22 15:21:23,706 WARN [NiFi Web Server-20] o.a.nifi.web.server.HostHeaderHandler Request host header [nifi.apache.org:9445] different from web hostname [localhost(:9445)]. Overriding to [localhost:9445/favicon.ico]

and in the browse i see below ERROR.


System Error

The request contained an invalid host header [nifi.apache.org:9445] in the request [/nifi]. Check for request manipulation or third-party intercept.

Valid host headers are [empty] or:
  • 127.0.0.1
  • 127.0.0.1:9445
  • localhost
  • localhost:9445
  • [::1]
  • [::1]:9445
  • samar-5.local
  • samar-5.local:9445
  • 17.114.29.10
  • 17.114.29.10:9445


Thanks

Samar