Cloudera Community
Announcements
We’ve updated our product names and community labels - click here for full details
Kolli
user rank
Explorer

Re: Client can not authenticate via ( token, kerbe...

by Explorer in Support Questions
‎09-06-2023 07:51 AM
‎09-06-2023 07:51 AM
2023/09/04 09:30:05.522 INFO o.a.h.s.UserGroupInformation : Login successful for user abc using keytab file abc. Keytab auto renewal enabled : false 2023/09/04 09:30:05.522 INFO c.s.f.c.s.c.SchedulingConfig After login 2023/09/04 09:30:05.730 WARN o.a.h.i.Client Exception encountered while connecting to the server : org.apache.hadoop. security.AccessControlException: Client cannot authenticate via: [TOKEN, KERBEROS] 2023/09/04 09:30:05.734 ERROR o.a.s.d.y.ApplicationMaster : User class threw exception: java.io. IOException: DestHost: destPort uklvadhdp123 : 8032 , LocalHost: localPort ukhdp/133.0Failed on local exception: java.io. IOException: org.apache. hadoop. security. AccessControlException: Client cannot authenticate via: [TOKEN, KERBEROS] In above error message first I am getting login successful. After that if I try to access yarn resource manager getting this issue ... View more

Re: Client can not authenticate via ( token, kerbe...

by Explorer in Support Questions
‎09-06-2023 07:48 AM
‎09-06-2023 07:48 AM
Hi Asok,  Yes, we have valid kerberos ticket. We are using keytab to authenticate. With same keytab I am able to access from local. When I deploy to cluster then I am facing this issue.  Thanks.  ... View more

Re: Client can not authenticate via ( token, kerbe...

by Explorer in Support Questions
‎09-05-2023 09:02 AM
‎09-05-2023 09:02 AM
Hi Diana,  Thank you.  Attaching more logs for reference 2023/09/04 09:30:05.522 INFO o.a.h.s.UserGroupInformation : Login successful for user abc using keytab file abc. Keytab auto renewal enabled : false 2023/09/04 09:30:05.522 INFO c.s.f.c.s.c.SchedulingConfig After login 2023/09/04 09:30:05.730 WARN o.a.h.i.Client Exception encountered while connecting to the server : org.apache.hadoop. security.AccessControlException: Client cannot authenticate via: [TOKEN, KERBEROS] 2023/09/04 09:30:05.734 ERROR o.a.s.d.y.ApplicationMaster : User class threw exception: java.io. IOException: DestHost: destPort uklvadhdp123 : 8032 , LocalHost: localPort ukhdp/133.0Failed on local exception: java.io. IOException: org.apache. hadoop. security. AccessControlException: Client cannot authenticate via: [TOKEN, KERBEROS] java.io. IOException: DestHost: destPort uklvad, LocalHost: localPort Failed on local exception: java.io. IOException: org. apache. hadoop. security. AccessControlException: Client cannot authenticate via: [TOKEN, KERBEROS] at sun.reflect.NativeConstructorAccessorImpl.newInstance0 (Native Method) at sun.reflect.NativeConstructorAccessorImpl.newInstance (NativeConstructorAccessorImpl. java : 62) at sun. reflect.DelegatingConstructorAccessorImpl.newInstance (DelegatingConstructorAccessorImpl. java : 45) at java.lang.reflect. Constructor.newInstance (Constructor. java : 423) at org.apache.hadoop.net.NetUtils. wrapWithMessage (NetUtils.java : 892) at org.apache.hadoop.net.NetUtils. wrapException (NetUtils.java : 867) at org. apache.hadoop.ipc.Client. getRpcResponse (Client. java: 1566) at org. apache.hadoop.ipc.Client.call (Client. java: 1508) at org.apache.hadoop.ipc.Client.call (Client.java: 1405) at org. apache.hadoop. ipc. ProtobufRpcEngine$Invoker.invoke (ProtobufRpcEngine. java :233) at org. apache. hadoop.ipc. ProtobufRpcEngine$Invoker.invoke (ProtobufRpcEngine. java :118) at com. sun. proxy. $Proxy79.getApplications (Unknown Source) at org. apache. hadoop.yarn. api.impl.pb.client.ApplicationClientProtocolPBClientImpl.getApplications (ApplicationClientProtocolPBClientImpl. java: 316) at sun. reflect.NativeMethodAccessorImpl.invoke0 (Native Method) at sun.reflect.NativeMethodAccessorImpl.invoke (NativeMethodAccessorImpl. java: 62) at sun.reflect.DelegatingMethodAccessorImpl.invoke (DelegatingMethodAccessorImpl. java : 43) at java.lang. reflect. Method. invoke (Method. java : 498) at org. apache.hadoop.io. retry.RetryInvocationHandler. invokeMethod (RetryInvocationHandler. java : 431) at org. apache.hadoop.io. retry. RetryInvocationHandler$Call.invokeMethod (RetryInvocationHandler. java:166) at org. apache.hadoop.io. retry.RetryInvocationHandler$Call.invoke (RetryInvocationHandler. java: 158) at org.apache.hadoop.io. retry. RetryInvocationHandler$Call. invokeOnce (RetryInvocationHandler. java : 96) at org. apache.hadoop.io. retry. RetryInvocationHandler. invoke (RetryInvocationHandler. java : 362) at com. sun.proxy.$Proxy80.getApplications (Unknown Source) at org.apache.hadoop.yarn.client.api. impl. YarnClientImpl.getApplications (YarnClientImpl. java:651) at com. scheduling. config. SchedulingConfig.renameFolders (SchedulingConfig. java: 901) at com.scheduling. SchedulingApp.main (SchedulingApp. java : 30) >   I have modified destination host and source host for security reasons.  Please let me know if any details are required to identify the root cause   ... View more

Client can not authenticate via ( token, kerberos)

by Explorer in Support Questions
‎09-05-2023 08:07 AM
‎09-05-2023 08:07 AM
I am getting client can not communicate via ( token, kerberos) exception when I am trying to access yarn resource manager from java application.  As part of my requirement in my spark java application I need to check some other applications running or not. For this I am using YarnClient class when I try to access this method getting above mentioned exception.  Same working for me in my local system with kerberos authentication.  I am using Hadoop library classes only to authenticate. UsergroupInformation class         ... View more
Labels:
Contact Me
Online
Offline
Last Visited
‎09-13-2023 01:28 PM
Community Statistics
Member Since ‎09-05-2023 07:01 AM
Last Visited ‎09-13-2023 01:28 PM
Posts 5