Support Questions
Find answers, ask questions, and share your expertise

When a service is removed from a kerborized cluster authenticating with Active Directory, is the associated service principal removed from the corresponding Active Directory OU?

Expert Contributor

When a cluster is kerborized using Active Directory as the KDC, the service principals are created in the AD OU for the Hadoop realm. If a service, such as Storm, is removed from the cluster will this cause the entry in Active Directory to be removed as well?

1 ACCEPTED SOLUTION

Accepted Solutions

Re: When a service is removed from a kerborized cluster authenticating with Active Directory, is the associated service principal removed from the corresponding Active Directory OU?

@terry@hortonworks.com Based on my experience with MIT, Yes

Based on my experience with AD KDC , I have noticed the same behavior.

View solution in original post

1 REPLY 1

Re: When a service is removed from a kerborized cluster authenticating with Active Directory, is the associated service principal removed from the corresponding Active Directory OU?

@terry@hortonworks.com Based on my experience with MIT, Yes

Based on my experience with AD KDC , I have noticed the same behavior.

View solution in original post