[jira] [Commented] (KUDU-2032) Kerberos authentication fails with rdns disabled in krb5.conf

Todd Lipcon (JIRA) Tue, 08 Aug 2017 10:44:30 -0700

    [ 
https://issues.apache.org/jira/browse/KUDU-2032?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16118726#comment-16118726
 ]


Todd Lipcon commented on KUDU-2032:
-----------------------------------

Bumped this to higher priority since it seems to be a relatively common 
configuration.

> Kerberos authentication fails with rdns disabled in krb5.conf
> -------------------------------------------------------------
>
>                 Key: KUDU-2032
>                 URL: https://issues.apache.org/jira/browse/KUDU-2032
>             Project: Kudu
>          Issue Type: Bug
>          Components: security
>    Affects Versions: 1.3.1, 1.4.0
>            Reporter: Todd Lipcon
>            Priority: Critical
>
> Currently if 'rnds = false' is configured in krb5.conf, Kudu ends up using 
> the IP addresses of remote hosts instead of the hostnames. This means that it 
> will look for krb5 principals by IP, even if actual hostnames have been 
> passed instead.
> This prevents krb5 from working properly in most environments where 
> rdns=false is set.



--
This message was sent by Atlassian JIRA
(v6.4.14#64029)

[jira] [Commented] (KUDU-2032) Kerberos authentication fails with rdns disabled in krb5.conf

Reply via email to