Support Questions

Find answers, ask questions, and share your expertise
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Advanced Search
Announcements
Check out our newest addition to the community, the Cloudera Data Analytics (CDA) group hub.
Solved Go to solution

using Kadmin for connectiong to AD KDC

Labels:
gvishal
Explorer

Created on ‎06-27-2017 12:20 PM - edited ‎09-16-2022 04:50 AM

Have anyone tried kadmin (connecting to AD KDC) after kerberising the hadoop cluster using Ambari?

I am using the same credentials and it is saying “Required KADM5 principal missing while initializing kadmin interface”. What is the recommended best way to AD KDC connection? Thanks for help

9,298 Views
1 ACCEPTED SOLUTION

rlevas
Guru

Created ‎06-27-2017 02:19 PM

@Vishal Gupta

You cannot use the MIT Kerberos package's kadmin tool to manage an Active Directory - you need to use Active Directory-specific tools, or for creating accounts, a tool that can communicate to the AD using LDAP.

For an LDAP approach, see this article posted by @dvillarreal: How to create AD principal accounts using OpenLdap utilities and adding it to a keytab.

View solution in original post

6,687 Views
3 REPLIES 3

ibhatt
Contributor

Created ‎06-27-2017 12:35 PM

@Vishal Gupta You might not have added principals for kadmin/fqdn@DOMAIN as well as the legacy fallback kadmin/admin@DOMAIN. You can add them using kadmin.local

https://web.mit.edu/kerberos/krb5-1.13/doc/admin/admin_commands/kadmin_local.html

6,687 Views
0 Kudos

rlevas
Guru

Created ‎06-27-2017 02:19 PM

@Vishal Gupta

You cannot use the MIT Kerberos package's kadmin tool to manage an Active Directory - you need to use Active Directory-specific tools, or for creating accounts, a tool that can communicate to the AD using LDAP.

For an LDAP approach, see this article posted by @dvillarreal: How to create AD principal accounts using OpenLdap utilities and adding it to a keytab.

6,688 Views

gvishal
Explorer

Created ‎06-27-2017 11:39 PM

Thanks Robert and bhatt. This is helpful

6,687 Views
0 Kudos
Take a Tour of the Community
Don't have an account?
Register
Your experience may be limited. Sign in to explore more.
Announcements
What's New @ Cloudera
Cloudera Operational Database (COD) UI supports creating a smaller cluster using a predefined Data Lake template
What's New @ Cloudera
Cloudera Operational Database (COD) supports scaling up the clusters vertically
Product Announcements
CDP Public Cloud: April 2023 Release Summary
What's New @ Cloudera
Cloudera Machine Learning launches "Add Data" feature to simplify data ingestion
What's New @ Cloudera
Simplify Data Access with Custom Connection Support in CML
View More Announcements