Support Questions
Find answers, ask questions, and share your expertise

kerberos configuration without AD/LDAP

Expert Contributor


I want to provide user authentication and resource/service authority to my cluster. I do not have LDAP server. I want to use Kerberos for my cluster security. How can I configure and start using kerberos without LDAP ?

I have followed this link but i don't what is next step ? How can i integrate kerberos with Ambari ?

For now i am trying on sandbox HDP 2.6.5.




@heta desai

Be sure you have Installed and Configured your KDC and have prepared the JCE on each host in the cluster.
Log in to Ambari Web and Browse to Admin > Kerberos.
Click “Enable Kerberos” to launch the wizard.

It's easiest to follow these instructions:

Followed by:

Expert Contributor

@Jonathan Sneep

After downloading jce8 i am not able to unzip it. It shows below error:

  End-of-central-directory signature not found.  Either this file is not                                                                                                
  a zipfile, or it constitutes one disk of a multi-part archive.  In the                                                                                                
  latter case the central directory and zipfile comment will be found on                                                                                                
  the last disk(s) of this archive.                                                                                                                                     
unzip:  cannot find zipfile directory in one of or                                                                                                    , and cannot find, period.

I am using this doc.

; ;