Could you please let us know what are the source and target cluster CDH versions?
After CDH5.12.0 (which starting to contain the fix for HADOOP-14104), distcp between clusters that both have KMS (or by feature name: hdfs transparent encryption enabled) requires the exclude parameters (mapreduce.job.hdfs-servers.token-renewal.exclude). Without the parameter disctp will fail with the error complaining about delegation token renewal.
Thanks and hope this helps,
Li Wang, Technical Solution Manager
Was your question answered? Make sure to mark the answer as the accepted solution. If you find a reply useful, say thanks by clicking on the thumbs up button.