Cloudera Community
Ani1991
user rank
New Contributor

Re: Defective token while login to Streams Messag...

by Expert Contributor Expert Contributor in Support Questions
‎11-24-2021 12:24 PM
‎11-24-2021 12:24 PM
@Ani1991    From the documentation: https://docs.cloudera.com/cdp-private-cloud-base/7.1.7/smm-security/topics/smm-securing-streams-messaging-manager.html    "If you deploy SMM without security, the login page is not enabled on the SMM UI by default. When you enable Kerberos authentication, SMM uses SPNEGO to authenticate users and allows them to view or create topics within Kafka by administering Ranger Kafka Policies. "   This looks like a Kerberos issue with the token in cache in the machine that you're trying to access the SMM UI.   Can you try using firefox browser and make sure it's configured properly, documentation for more details: https://docs.cloudera.com/documentation/enterprise/latest/topics/cdh_sg_browser_access_kerberos_protected_url.html     ... View more

Re: Ranger Service test connection failed

by Expert Contributor Expert Contributor in Support Questions
‎11-18-2021 12:38 AM
1 Kudo
‎11-18-2021 12:38 AM
1 Kudo
Hi @Ani1991 , Suspecting Kerberos related parameters are incorrectly configured in the Kafka service repo in Ranger. Can you please try the below solution :     -- Ranager Admin UI > edit kafka service repo cm_kafka > Add configs in "Add New Configurations" -- Add below configs. (Change the config accordingly) for protocol   bootstrap.servers <kafkaBroker>:Port security.protocol SASL_PLAINTEXT sasl.mechanism GSSAPI kafka.keytab <keytab> kafka.principal <prinicipal>   This config needs a kafka keytab  path , copy kafka keytab to ranger admin host with ranger:ranger permissions set. ... View more
Contact Me
Online
Offline
Last Visited
‎11-26-2021 01:59 AM
Community Statistics
Member Since ‎11-16-2021 04:36 AM
Last Visited ‎11-26-2021 01:59 AM
Posts 2