ok it worked , thanks a lot for your help . I had to create the ticket as user hive before starting beeline. [hive@hadoop1 ~]$ kinit hive Password for hive@TOLLS.DOT.STATE.FL.US: [hive@hadoop1 ~]$ klist Ticket cache: FILE:/tmp/krb5cc_1004 Default principal: hive@TOLLS.DOT.STATE.FL.US Valid starting Expires Service principal 11/30/16 18:52:14 12/01/16 18:52:14 krbtgt/TOLLS.DOT.STATE.FL.US@TOLLS.DOT.STATE.FL.US renew until 11/30/16 18:52:14 [hive@hadoop1 ~]$ beeline Beeline version 1.2.1000.2.5.0.0-1245 by Apache Hive beeline> !connect jdbc:hive2://hadoop2:10000/default;principal=hive/hadoop2@TOLLS.DOT.STATE.FL.US Connecting to jdbc:hive2://hadoop2:10000/default;principal=hive/hadoop2@TOLLS.DOT.STATE.FL.US Enter username for jdbc:hive2://hadoop2:10000/default;principal=hive/hadoop2@TOLLS.DOT.STATE.FL.US: hive Enter password for jdbc:hive2://hadoop2:10000/default;principal=hive/hadoop2@TOLLS.DOT.STATE.FL.US: ******* Connected to: Apache Hive (version 1.2.1000.2.5.0.0-1245) Driver: Hive JDBC (version 1.2.1000.2.5.0.0-1245) Transaction isolation: TRANSACTION_REPEATABLE_READ 0: jdbc:hive2://hadoop2:10000/default> ... View more

ok I created the hive/admin principal in KDC is this correct ? [root@hadoop1 ~]# kadmin.local Authenticating as principal admin/admin@TOLLS.DOT.STATE.FL.US with password. kadmin.local: addprinc hive/admin WARNING: no policy specified for hive/admin@TOLLS.DOT.STATE.FL.US; defaulting to no policy Enter password for principal "hive/admin@TOLLS.DOT.STATE.FL.US": Re-enter password for principal "hive/admin@TOLLS.DOT.STATE.FL.US": Principal "hive/admin@TOLLS.DOT.STATE.FL.US" created. [root@hadoop1 ~]# kinit hive/admin Password for hive/admin@TOLLS.DOT.STATE.FL.US: [root@hadoop1 ~]# klist Ticket cache: FILE:/tmp/krb5cc_0 Default principal: hive/admin@TOLLS.DOT.STATE.FL.US Valid starting Expires Service principal 11/30/16 18:45:50 12/01/16 18:45:50 krbtgt/TOLLS.DOT.STATE.FL.US@TOLLS.DOT.STATE.FL.US renew until 11/30/16 18:45:50 ... View more

thanks all for your help I could install Kerberos ... View more

ah there was a typo in the krb5.conf file . I typed "SATE" instead of "STATE" . so I can login into kadmin now and will try to re-install via ambari and report. ... View more

changed that , still same , kdc cant find the master key ... View more

even the service wont start now [root@hadoop1 etc]# service krb5kdc start Starting Kerberos 5 KDC: krb5kdc: cannot initialize realm TOLLS.DOT.SATE.FL.US - see log file for details [FAILED] tail -100f /var/log/krb5kdc.log Nov 30 10:50:36 hadoop1 krb5kdc[18920](info): closing down fd 9 Nov 30 10:50:36 hadoop1 krb5kdc[18920](info): closing down fd 7 Nov 30 10:50:36 hadoop1 krb5kdc[18920](info): shutting down krb5kdc: Can not fetch master key (error: No such file or directory). - while fetching master key K/M for realm TOLLS.DOT.SATE.FL.US e ... View more

here is my krb5.conf file [root@hadoop1 ~]# cat /etc/krb5.conf [libdefaults] renew_lifetime = 7d forwardable = true default_realm = TOLLS.DOT.SATE.FL.US ticket_lifetime = 24h dns_lookup_realm = false dns_lookup_kdc = false default_ccache_name = /tmp/krb5cc_%{uid} #default_tgs_enctypes = aes des3-cbc-sha1 rc4 des-cbc-md5 #default_tkt_enctypes = aes des3-cbc-sha1 rc4 des-cbc-md5 [logging] default = FILE:/var/log/krb5kdc.log admin_server = FILE:/var/log/kadmind.log kdc = FILE:/var/log/krb5kdc.log [realms] TOLLS.DOT.SATE.FL.US = { admin_server = hadoop1.tolls.dot.state.fl.us kdc = hadoop1 } [root@hadoop1 ~]# ... View more

ah this is frustrating , I didn't change anything and just after the installation I can't get into kadmin I even recreated the KDC database but no luck . [root@hadoop1 krb5kdc]# kdb5_util create -r TOLLS.DOT.STATE.FL.US –s Loading random data Initializing database '/var/kerberos/krb5kdc/principal' for realm 'TOLLS.DOT.STATE.FL.US', master key name 'K/M@TOLLS.DOT.STATE.FL.US' You will be prompted for the database Master Password. It is important that you NOT FORGET this password. Enter KDC database master key: Re-enter KDC database master key to verify: [root@hadoop1 krb5kdc]# pwd /var/kerberos/krb5kdc [root@hadoop1 krb5kdc]# ls principal principal.kadm5 principal.kadm5.lock principal.ok [root@hadoop1 krb5kdc]# ls -ltr total 16 -rw------- 1 root root 8192 Nov 30 10:22 principal.kadm5 -rw------- 1 root root 0 Nov 30 10:22 principal.kadm5.lock -rw------- 1 root root 8192 Nov 30 10:22 principal -rw------- 1 root root 0 Nov 30 10:22 principal.ok [root@hadoop1 krb5kdc]# kadmin.local Authenticating as principal kadmin/admin@TOLLS.DOT.STATE.FL.US with password. kadmin.local: Can not fetch master key (error: No such file or directory). while initializing kadmin.local interface [root@hadoop1 krb5kdc]# [root@hadoop1 krb5kdc]# klist Ticket cache: FILE:/tmp/krb5cc_0 Default principal: kadmin/admin@TOLLS.DOT.STATE.FL.US Valid starting Expires Service principal 11/30/16 09:00:42 11/30/16 12:00:42 krbtgt/TOLLS.DOT.STATE.FL.US@TOLLS.DOT.STATE.FL.US renew until 11/30/16 09:00:42 [root@hadoop1 krb5kdc]# ... View more

also I keep getting this error , whats the solution ? in this screen its not accepting kadmin/admin but only K/M ... View more