Support Questions

russ_stevenson · ‎06-12-2018

Previously it had always recommended adding the following to the core-site.xml to limit hostname and IP exposure when getting Kerberos delegation tokens: hadoop.security.token.service.use_ip=false when using Kerberos with HDP and Isilon.

But in recent deployments, this setting does not appear as critical as previously required if full forward and DNS is implemented correctly. (PTR's on all Isilon Pool IP's).

I'm looking for any field experience on this issue, is this setting still required or needed to avoid delegation token issues?

sandeepV2 · ‎06-02-2021

Specify the following configurations in Cloudera Manager on the Clusters > Isilon Service > Configuration tab:

In the Isilon Cluster-wide Advanced Configuration Snippet (Safety Valve) for core-site.xml property for the Isilon service, set the value use_ip property to FALSE.

hadoop.security.token.service.use_ip = false

For more info click here

Cloudera Community

Support Questions

use of hadoop.security.token.service.use_ip=false with Isilon

Trouble Connecting to Isilon S3 bucket w Impala an...

Hadoop enhancements in Isilon OneFS 801

EMC Isilon HDP 2.3 and Ambari 2.1 Installation Gui...

Hortonworks Secure Cluster with Isilon OneFS

PutHDFS Isilon Errors

HDP with Isilon: Certified and ready for any Hadoo...

Configuring kerberos for YARN with Isilon

HDFS is unable to change user/group in a cluster w...

HDP on Isilon - fsck problem

Nifi with Isilon?