Support Questions
Find answers, ask questions, and share your expertise

Zookeeper not starting after enabling Kerberos

Explorer

Hi Team

 

I have setup a cluster with CDP 7.0.3 with few services. When I try to enable Kerberos zookeeper is not starting with SASL error.

 

Please let me know if there are any workaround or solution on this issue.

 

2020-06-01 10:29:11,739 ERROR org.apache.zookeeper.server.quorum.QuorumPeerMain: Unexpected exception, exiting abnormally
java.io.IOException: Could not configure server because SASL configuration did not allow the ZooKeeper server to authenticate itself properly: javax.security.auth.login.LoginException: Message stream modified (41)
at org.apache.zookeeper.server.ServerCnxnFactory.configureSaslLogin(ServerCnxnFactory.java:243)
at org.apache.zookeeper.server.NIOServerCnxnFactory.configure(NIOServerCnxnFactory.java:646)
at org.apache.zookeeper.server.quorum.QuorumPeerMain.runFromConfig(QuorumPeerMain.java:148)
at org.apache.zookeeper.server.quorum.QuorumPeerMain.initializeAndRun(QuorumPeerMain.java:123)
at org.apache.zookeeper.server.quorum.QuorumPeerMain.main(QuorumPeerMain.java:82)
2020-06-01 10:29:18,038 INFO org.apache.zookeeper.server.quorum.QuorumPeerConfig: Reading configuration from: /var/run/cloudera-scm-agent/process/1546335216-zookeeper-server/zoo.cfg
2020-06-01 10:29:18,056 INFO org.apache.zookeeper.server.quorum.QuorumPeerConfig: clientPortAddress is 0.0.0.0/0.0.0.0:2181
2020-06-01 10:29:18,056 INFO org.apache.zookeeper.server.quorum.QuorumPeerConfig: secureClientPort is not set
2020-06-01 10:29:18,063 INFO org.apache.zookeeper.server.DatadirCleanupManager: autopurge.snapRetainCount set to 5
2020-06-01 10:29:18,063 INFO org.apache.zookeeper.server.DatadirCleanupManager: autopurge.purgeInterval set to 24
2020-06-01 10:29:18,065 INFO org.apache.zookeeper.jmx.ManagedUtil: Log4j found with jmx enabled.
2020-06-01 10:29:18,074 INFO org.apache.zookeeper.server.quorum.QuorumPeerMain: Starting quorum peer
2020-06-01 10:29:18,083 INFO org.apache.zookeeper.server.DatadirCleanupManager: Purge task started.
2020-06-01 10:29:18,085 INFO org.apache.zookeeper.server.persistence.FileTxnSnapLog: zookeeper.snapshot.trust.empty : false
2020-06-01 10:29:18,090 INFO org.apache.zookeeper.server.DatadirCleanupManager: Purge task completed.
2020-06-01 10:29:18,099 INFO org.apache.zookeeper.server.ServerCnxnFactory: Using org.apache.zookeeper.server.NIOServerCnxnFactory as server connection factory
2020-06-01 10:29:18,110 INFO org.apache.zookeeper.common.X509Util: Setting -D jdk.tls.rejectClientInitiatedRenegotiation=true to disable client-initiated TLS renegotiation
2020-06-01 10:29:18,224 ERROR org.apache.zookeeper.server.quorum.QuorumPeerMain: Unexpected exception, exiting abnormally
java.io.IOException: Could not configure server because SASL configuration did not allow the ZooKeeper server to authenticate itself properly: javax.security.auth.login.LoginException: Message stream modified (41)
at org.apache.zookeeper.server.ServerCnxnFactory.configureSaslLogin(ServerCnxnFactory.java:243)
at org.apache.zookeeper.server.NIOServerCnxnFactory.configure(NIOServerCnxnFactory.java:646)
at org.apache.zookeeper.server.quorum.QuorumPeerMain.runFromConfig(QuorumPeerMain.java:148)
at org.apache.zookeeper.server.quorum.QuorumPeerMain.initializeAndRun(QuorumPeerMain.java:123)
at org.apache.zookeeper.server.quorum.QuorumPeerMain.main(QuorumPeerMain.java:82)

 

Thanks

BaluD

 

2 REPLIES 2

New Contributor

I have the same exact problem. Do you finally get the solution?

 

CM 7.4.4 and CR 7.1.7. Im not sure wheteher this is kerberos issue or CDP issue.

Please help

 

Thank you

Community Manager

@faridilakmal , as this is an older post, you would have a better chance of receiving a resolution by starting a new thread. This will also be an opportunity to provide details specific to your environment that could aid others in assisting you with a more accurate answer to your question. You can link this thread as a reference in your new post.



Regards,

Chris McConnell,
Community Manager

Was your question answered? Make sure to mark the answer as the accepted solution.
If you find a reply useful, say thanks by clicking on the thumbs up button.
Learn more about the Cloudera Community:
Take a Tour of the Community
Don't have an account?
Your experience may be limited. Sign in to explore more.