[
https://issues.apache.org/jira/browse/NIFI-4710?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16565023#comment-16565023
]
ASF GitHub Bot commented on NIFI-4710:
--------------------------------------
Github user SarthakSahu commented on the issue:
https://github.com/apache/nifi/pull/2866
@pepov ok.
1. Service Principal and service keytab required where as nifi needs
authenticate as client. So when nifi needs to authenticate as client to
kerborized zookeeper service keytab and principal is needed.
2. For user authentication nifi will authenticate users with help of KDC
server.
For example: A "pepov" user wants to authenticate with nifi.
We need to create a principal in KDC server as pe...@example.com using
below command.
Note: we have not used -randkey option. Instead we provide password to the
created princpal
kadmin: addprinc pepov
WARNING: no policy specified for pe...@example.com; defaulting to no policy
Enter password for principal "pe...@example.com":
Re-enter password for principal "pe...@example.com":
Principal "pe...@example.com" created.
Now we have to provide the username(pepov) and password in the login page
to access nifi.
Hope this clarify the query.
> Kerberos
> --------
>
> Key: NIFI-4710
> URL: https://issues.apache.org/jira/browse/NIFI-4710
> Project: Apache NiFi
> Issue Type: Sub-task
> Components: Docker
> Reporter: Aldrin Piri
> Assignee: Sarthak
> Priority: Major
>
--
This message was sent by Atlassian JIRA
(v7.6.3#76005)
