Created 01-27-2020 08:48 AM
Dear community
I have installed a hadoop cluster on 8 servers using Ambari Hortonworks.
I am able to access webhdfs using the ip address and the default port 50070 without authentication.
How can I secure Webhdfs?
P.S I did not enable using kerberos in Ambari > Enable kerberos , should I do it?
Any suggestion will be appreciated
Thanks
Asma
Created 02-03-2020 01:03 PM
Good to know that your original issue is resolved. However for any subsequent slightly different issue it is always better to open a new Community Thread that way the readers of this thread can easily find out One Error/Issue with one Solution. Multiple issues in a single thread can cause readers to get confused.
.
If your question is answered then, Please make sure to mark the answer as the accepted solution.
If you find a reply useful, say thanks by clicking on the thumbs up button.
Created on 02-03-2020 11:42 PM - edited 02-03-2020 11:43 PM
<property>
<name>dfs.webhdfs.enabled</name>
<value>true</value>
</property>
kadmin: addprinc -randkey HTTP/$<Fully_Qualified_Domain_Name>@$<Realm_Name>.COM
kadmin: xst -norandkey -k /etc/security/spnego.service.keytab HTTP/$<Fully_Qualified_Domain_Name>
klist –k -t /etc/security/spnego.service.keytab
<property>
<name>dfs.web.authentication.kerberos.principal</name>
<value>HTTP/$<Fully_Qualified_Domain_Name>@$<Realm_Name>.COM</value>
</property>
<property>
<name>dfs.web.authentication.kerberos.keytab</name>
<value>/etc/security/spnego.service.keytab</value>
</property>