Cloudera Community
kumarbrahma
user rank
Explorer
My Accepted Solutions
Show All

Re: Router error in Druid with Kerberos

by Explorer in Support Questions
‎10-24-2017 01:04 PM
‎10-24-2017 01:04 PM
The issue was resolved by disabling Kerberos authentication for Druid and also by fixing Broker host and Broker port values in the Superset console for the Druid cluster. Thank you, @Nishant Bangarwa, for all the help. ... View more

Re: Router error in Druid with Kerberos

by Explorer in Support Questions
‎10-17-2017 02:34 PM
‎10-17-2017 02:34 PM
Yes, I have added the Druid service through Ambari. Initially, the Druid keytabs were missing and then I had to regenerate them and then the services came up with no other issues. But I saw the error message related to the missing CompositeGrousMapping class in the router.log file. I have even tried to copy the hadoop-common.jar to druid/lib, the error went way, but the services are not staying up.I have also followed the link you provided to make sure all the config settings are in there, it was missing druid.hadoop.security.spnego.cookieSignatureSecret, which I have added and restarted Druid. Thanks a lot for all the help, @Geoffrey Shelton Okot ... View more

Re: Router error in Druid with Kerberos

by Explorer in Support Questions
‎10-17-2017 12:10 PM
‎10-17-2017 12:10 PM
@Geoffrey Shelton Okot, it did not work. I have added all the missing configurations and did the kinit to the druid.headless.keytab on all the master nodes and still I am seeing the same error when I tried to run this command: curl --negotiate -u:<USER> -b ~/cookies.txt -c ~/cookies.txt -X 'POST' -H 'Content-Type:application/json' -d @wikiticker-index.json <OVERLORD_HOST>:8090/druid/indexer/v1/task ... View more

Re: Router error in Druid with Kerberos

by Explorer in Support Questions
‎10-16-2017 08:28 PM
‎10-16-2017 08:28 PM
Thank you, @Geoffrey Shelton Okot, for the reply. Yes, I have followed all of the steps, from the link you have provided, before, except for this: druid.hadoop.security.spnego.cookieSignatureSecret. I will try adding this and see if it will resolve the issue. And the Druid principal looks slightly different in our cluster, druid@REALM. ... View more

Router error in Druid with Kerberos

by Explorer in Support Questions
‎10-16-2017 06:51 PM
‎10-16-2017 06:51 PM
Hi All, I have installed Druid (0.9.2) using Ambari (2.5.1.0) on a kerberized cluster. This error keeps popping up in the router.log file: ERROR [CoordinatorRuleManager-Exec--0] io.druid.server.router.CoordinatorRuleManager - Exception while polling for rules java.lang.RuntimeException: java.lang.RuntimeException: java.lang.ClassNotFoundException: Class org.apache.hadoop.security.CompositeGroupsMapping not found And I also saw this error in the overlord.log: WARN org.apache.hadoop.security.authentication.server.AuthenticationFilter - AuthenticationToken ignored: org.apache.hadoop.security.authentication.util.SignerException: Invalid signature Once the Druid is installed, does it require any other steps to get it work for a kerberized cluster? TIA, Kumar ... View more

Re: Unable to connect to HiveServer2 from JMeter u...

by Explorer in Support Questions
‎10-06-2017 06:51 PM
‎10-06-2017 06:51 PM
Yes, Constantin. I am using the Hive user keytab and have a valid Kerberos ticket for this user. Also, I have uncommented the lines related to krb5.conf and jaas.conf paths in the bin/system.properties. I have also provided the full paths to these files in the jmeter command. But adding the -Djavax.security.auth.useSubjectCredsOnly=false did the trick. Now it is correctly picking up the principal/keytab information from the jaas.conf. Thanks a lot for the quick repsonse, @Constantin Stanca. I have been working on this for more than one week. This is my final jmeter command that worked for me: JVM_ARGS="-Xms1024m -Xmx1024m" bin/jmeter -Dsun.security.krb5.debug=true -Djavax.security.auth.useSubjectCredsOnly=false -Djava.security.debug=gssloginconfig,configfile,configparser,logincontext -Djava.security.krb5.conf=/path/to/krb5.conf -Djava.security.auth.login.config=/path/to/jaas.conf -n -t t1.jmx -l results -e -o output Thank you, Kumar ... View more

Unable to connect to HiveServer2 from JMeter using...

by Explorer in Support Questions
‎10-06-2017 06:25 PM
1 Kudo
‎10-06-2017 06:25 PM
1 Kudo
I am trying to connect to HiveServer2 from JMeter over Kerberos. These are the two articles I have used: https://community.hortonworks.com/articles/60580/jmeter-setup-for-hive-load-testing-draft.html https://www.blazemeter.com/blog/windows-authentication-apache-jmeter And this is the JMeter command I am using: JVM_ARGS="-Xms1024m -Xmx1024m" bin/jmeter -Dsun.security.krb5.debug=true -Djava.security.krb5.conf=/path/to/krb5.conf -Djava.security.auth.login.config=/path/to/jaas.conf -n -t test_plan.jmx -l results -e -o output But for some reason, it is not picking the keytab information from the jaas.conf file and so I could not get the connection over Kerberos. ... View more
Labels:
Contact Me
Online
Offline
Last Visited
‎03-22-2018 08:26 PM
Community Statistics
Member Since ‎10-06-2017 06:21 PM
Last Visited ‎03-22-2018 08:26 PM
Posts 8
Kudos received 1