Support Questions
Find answers, ask questions, and share your expertise
Announcements
Alert: Welcome to the Unified Cloudera Community. Former HCC members be sure to read and learn how to activate your account here.

use of hadoop.security.token.service.use_ip=false with Isilon

use of hadoop.security.token.service.use_ip=false with Isilon

Previously it had always recommended adding the following to the core-site.xml to limit hostname and IP exposure when getting Kerberos delegation tokens: hadoop.security.token.service.use_ip=false when using Kerberos with HDP and Isilon.

But in recent deployments, this setting does not appear as critical as previously required if full forward and DNS is implemented correctly. (PTR's on all Isilon Pool IP's).

I'm looking for any field experience on this issue, is this setting still required or needed to avoid delegation token issues?

Don't have an account?
Coming from Hortonworks? Activate your account here