[
https://issues.apache.org/jira/browse/HADOOP-10322?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13889682#comment-13889682
]
Alejandro Abdelnur commented on HADOOP-10322:
---------------------------------------------
I don't see how this is to be wired in HADOOP-10158 yet.
Chatting with [~daryn] on the phone (while trying to straighten up some SPNEGO
issues) we discussed about reading the principals from the keytab.
I'm not trilled about making a keytab a configuration file (it will effectively
be one as we'll read principals from there), but I understand it simplifies
configuration. Still, I would like to be able to specify in the regular hadoop
configuration files the exact principals I want to use from the keytab. If I
specify no principals, the keytab is the source of truth for the principals, if
I specify principals in the configuration files, only those are read/used from
the keytab for whatever reason we need to use them for.
Makes sense?
> Add ability to read principal names from a keytab
> -------------------------------------------------
>
> Key: HADOOP-10322
> URL: https://issues.apache.org/jira/browse/HADOOP-10322
> Project: Hadoop Common
> Issue Type: Improvement
> Components: security
> Affects Versions: 2.2.0
> Reporter: Benoy Antony
> Assignee: Benoy Antony
> Attachments: HADOOP-10322.patch, HADOOP-10322.patch,
> HADOOP-10322.patch, HADOOP-10322.patch, HADOOP-10322.patch
>
>
> It will be useful to have an ability to enumerate the principals stored in a
> keytab.
--
This message was sent by Atlassian JIRA
(v6.1.5#6160)
