[jira] [Commented] (HADOOP-12426) Add Entry point for Kerberos health check

Fri, 05 Feb 2016 16:53:51 -0800 

    [ 
https://issues.apache.org/jira/browse/HADOOP-12426?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15135369#comment-15135369
 ] 

Hudson commented on HADOOP-12426:
---------------------------------

FAILURE: Integrated in Hadoop-trunk-Commit #9252 (See 
[https://builds.apache.org/job/Hadoop-trunk-Commit/9252/])
HADOOP-12426. Add Entry point for Kerberos health check. Contributed by 
(cnauroth: rev cfa8513890ec1cd7f71258ff3c3083f6d89a4fc4)
* hadoop-common-project/hadoop-common/CHANGES.txt
* hadoop-common-project/hadoop-common/src/main/conf/hadoop-env.sh
* 
hadoop-common-project/hadoop-common/src/main/java/org/apache/hadoop/security/KDiag.java
* hadoop-common-project/hadoop-common/src/site/markdown/SecureMode.md
* 
hadoop-common-project/hadoop-common/src/test/java/org/apache/hadoop/security/TestKDiagNoKDC.java
* 
hadoop-common-project/hadoop-common/src/test/java/org/apache/hadoop/security/TestKDiag.java
* 
hadoop-common-project/hadoop-common/src/main/java/org/apache/hadoop/security/UserGroupInformation.java
* 
hadoop-common-project/hadoop-common/src/test/resources/org/apache/hadoop/security/secure-hdfs-site.xml


> Add Entry point for Kerberos health check
> -----------------------------------------
>
>                 Key: HADOOP-12426
>                 URL: https://issues.apache.org/jira/browse/HADOOP-12426
>             Project: Hadoop Common
>          Issue Type: New Feature
>          Components: security
>    Affects Versions: 2.7.1
>            Reporter: Steve Loughran
>            Assignee: Steve Loughran
>            Priority: Minor
>             Fix For: 2.8.0
>
>         Attachments: HADOOP-12426-001.patch, HADOOP-12426-002.patch, 
> HADOOP-12426-003.patch, HADOOP-12426-004.patch, HADOOP-12426-006.patch, 
> HADOOP-12426-007.patch, HADOOP-12426-008.patch, HADOOP-12426-009.patch, 
> HADOOP-12426-010.patch
>
>
> If we a little command line entry point for testing kerberos settings, 
> including some automated diagnostics checks, we could simplify fielding the 
> client-side support calls.
> Specifically
> * check JRE for having java crypto extensions at full key length.
> * network checks: do you know your own name?
> * Is the user kinited in?
> * if a tgt is specified, does it exist?
> * are hadoop security options consistent?



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)

Reply via email to