hadoop-common-issues mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Alejandro Abdelnur (JIRA)" <j...@apache.org>
Subject [jira] [Commented] (HADOOP-10322) Add ability to read principal names from a keytab
Date Mon, 03 Feb 2014 17:58:10 GMT

    [ https://issues.apache.org/jira/browse/HADOOP-10322?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13889682#comment-13889682

Alejandro Abdelnur commented on HADOOP-10322:

I don't see how this is to be wired in HADOOP-10158 yet.

Chatting with [~daryn] on the phone (while trying  to straighten up some SPNEGO issues) we
discussed about reading the principals from the keytab.

I'm not trilled about making a keytab a configuration file (it will effectively be one as
we'll read principals from there), but I understand it simplifies configuration. Still, I
would like to be able to specify in the regular hadoop configuration files the exact principals
I want to use from the keytab. If I specify no principals, the keytab is the source of truth
for the principals, if I specify principals in the configuration files, only those are read/used
from the keytab for whatever reason we need to use them for.

Makes sense?

> Add ability to read principal names from a keytab
> -------------------------------------------------
>                 Key: HADOOP-10322
>                 URL: https://issues.apache.org/jira/browse/HADOOP-10322
>             Project: Hadoop Common
>          Issue Type: Improvement
>          Components: security
>    Affects Versions: 2.2.0
>            Reporter: Benoy Antony
>            Assignee: Benoy Antony
>         Attachments: HADOOP-10322.patch, HADOOP-10322.patch, HADOOP-10322.patch, HADOOP-10322.patch,
> It will be useful to have an ability to enumerate the principals stored in a keytab.

This message was sent by Atlassian JIRA

View raw message