[ https://issues.apache.org/jira/browse/NIFI-4710?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16565023#comment-16565023 ]
ASF GitHub Bot commented on NIFI-4710: -------------------------------------- Github user SarthakSahu commented on the issue: https://github.com/apache/nifi/pull/2866 @pepov ok. 1. Service Principal and service keytab required where as nifi needs authenticate as client. So when nifi needs to authenticate as client to kerborized zookeeper service keytab and principal is needed. 2. For user authentication nifi will authenticate users with help of KDC server. For example: A "pepov" user wants to authenticate with nifi. We need to create a principal in KDC server as pe...@example.com using below command. Note: we have not used -randkey option. Instead we provide password to the created princpal kadmin: addprinc pepov WARNING: no policy specified for pe...@example.com; defaulting to no policy Enter password for principal "pe...@example.com": Re-enter password for principal "pe...@example.com": Principal "pe...@example.com" created. Now we have to provide the username(pepov) and password in the login page to access nifi. Hope this clarify the query. > Kerberos > -------- > > Key: NIFI-4710 > URL: https://issues.apache.org/jira/browse/NIFI-4710 > Project: Apache NiFi > Issue Type: Sub-task > Components: Docker > Reporter: Aldrin Piri > Assignee: Sarthak > Priority: Major > -- This message was sent by Atlassian JIRA (v7.6.3#76005)