we are planning for new dev 10 node cluster
i need user management in HDP with Ambari. wanted to go for KRB integrated with AD
1.Do we need any service account to be created..?
2. Let assume that secure (KRB) cluster is u and running , how do i set up new users going forward , if user addded in AD group is the only way and hdfs home directory on edge node. actually my question here is how to synac AD users with hdp clusters.
3. do we need separate ids for yarn job in AD pr how to manage jobs etc. please point me out for some good link or readables.
Hello @Kant T,
> my question here is how to sync AD users with hdp clusters.
The best way to achieve this is to use SSSD. In this, you'll need to make your cluster nodes part of AD domain and then the nodes will be able to see the AD users and groups. Please follow the instructions here:
I'll highly recommend to go over this document from the beginning.
Hope this helps.