[
https://issues.apache.org/jira/browse/HDFS-3980?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13469267#comment-13469267
]
Brahma Reddy Battula commented on HDFS-3980:
--------------------------------------------
Hi ATM,
Thanks for look..I had created keytab files again and checked..But I got same
problem.
{code}
try {
GSSManager gssManager = GSSManager.getInstance();
String servicePrincipal = KerberosUtil.getWebDfsPrincipalAndReset();
if (servicePrincipal == null) {
servicePrincipal = "HTTP/"
+ KerberosAuthenticator.this.url.getHost();
}
Oid oid = KerberosUtil.getOidInstance("NT_GSS_KRB5_PRINCIPAL");
GSSName serviceName = gssManager.createName(servicePrincipal,
oid);
{code}
Here I have one more doubt..getWebDfsPrincipalAndReset() is returning
null..Hence principal is HTTP/hostname which is not added in the KDC and then
ticket is failing like following..
Oct 04 03:07:43 host-*******-168 krb5kdc[24598](info): TGS_REQ (6 etypes {3 1
23 16 17 18}) *******.168: ISSUE: authtime 1349300202, etypes {rep=23 tkt=18
ses=23}, hdfs/[email protected] for hdfs/[email protected]
Oct 04 03:07:43 host-*******-168 krb5kdc[24598](info): TGS_REQ (6 etypes {3 1
23 16 17 18}) *******.168: ISSUE: authtime 1349300202, etypes {rep=23 tkt=18
ses=23}, hdfs/[email protected] for hdfs/[email protected]
Oct 04 03:07:43 host-*******-168 krb5kdc[24598](info): TGS_REQ (6 etypes {3 1
23 16 17 18}) *******.168: ISSUE: authtime 1349300202, etypes {rep=23 tkt=18
ses=23}, hdfs/[email protected] for HTTP/*******[email protected]
Oct 04 03:07:43 host-*******-168 krb5kdc[24598](info): TGS_REQ (6 etypes {3 1
23 16 17 18}) *******.168: ISSUE: authtime 1349300202, etypes {rep=23 tkt=18
ses=23}, hdfs/[email protected] for HTTP/*******[email protected]
Please help me this anything I am missing,Why Ticket and Principal both are
coming as null..?
(principal and token are coming null while authenticating so
getWebDfsPrincipalAndReset() are coming as null..)
> NPE in HttpURLConnection.java while starting SecondaryNameNode.
> ---------------------------------------------------------------
>
> Key: HDFS-3980
> URL: https://issues.apache.org/jira/browse/HDFS-3980
> Project: Hadoop HDFS
> Issue Type: Bug
> Components: security
> Affects Versions: 3.0.0, 2.0.1-alpha
> Reporter: Brahma Reddy Battula
> Priority: Critical
> Attachments: core-site.xml, hdfs-site.xml
>
>
> Scenario:
> ========
> I started secure cluster by going thru following..
> https://ccp.cloudera.com/display/CDHDOC/CDH3+Security+Guide..
> Here SecondaryNamenode is getting shutdown by throwing NPE..
> Please correct me If I am wrong...
> Will attach conf and logs..
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira
