[
https://issues.apache.org/jira/browse/SAMZA-727?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15180525#comment-15180525
]
Steve Loughran commented on SAMZA-727:
--------------------------------------
# AM/RM refresh is automatic and doesn't need any keytab; as long as the AM
stays up, it'll send new credentials (it comes in an allocation response, if
you look closely)
# if you have a keytab, you can get your own HDFS credentials.
# What you can't seem to do is update the credentials on the original launch
context. Which means that on AM failure after credential expiry, things may not
work. I Say "may", as I thought it was handled, but in the JIRA on the [new
documentation|https://github.com/apache/hadoop/blob/trunk/hadoop-yarn-project/hadoop-yarn/hadoop-yarn-site/src/site/markdown/YarnApplicationSecurity.md]
I was told this isn't true
> Support for Kerberos
> --------------------
>
> Key: SAMZA-727
> URL: https://issues.apache.org/jira/browse/SAMZA-727
> Project: Samza
> Issue Type: New Feature
> Components: yarn
> Affects Versions: 0.9.0
> Environment: YARN with Kerberos
> Reporter: Qi FU
> Assignee: Chen Song
> Fix For: 0.10.1
>
> Attachments: SAMZA-727.patch
>
>
> Samza doesn't support Kerberos, which is very common for YARN cluster.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
