It looks like in the JDK versions in question, your client credential TGT isn't able to authenticate to the WebHDFS server, or the TGT doesn't match with any keytab key configured for HTTP service principal. You may inspect your keytab file closely, checking the key version, encryption types and so on. More logs may be helpful, for the IBM JDK, I guess you can try the following.
-Dcom.ibm.security.jgss.debug=all -Dcom.ibm.security.krb5.Krb5Debug=all Regards, Kai From: Ravi Tatapudi [mailto:[email protected]] Sent: Wednesday, January 06, 2016 8:10 PM To: [email protected] Subject: Issue with WebHDFS Kerberos authentication, when running with JVM-1.7.0-SR1 or above Hello, Pl. find attached text-file, having the sample-code for deleting a file on WebHDFS, with "kerberos security" enabled. I see that, this code is working successfully when run using "JDK-1.7-GA" (i.e., with "J9VM - R27_Java727_GA_20131114_0833_B175264", as seen from the output of the command: "java -version"). However, when the same code is run using the JDK-1.7-SR1 or above (i.e., with "J9VM - R27_Java727_SR1_20140410_1931_B195893", as seen from the output of the command: "java -version"), it is failing with the exception shown in the attached text-file below: I also tried using the JDK-1.7-SR3.fp20 ("J9VM - R27_Java727_SR3_20151022_1530_B273253") & got the same exception, that I am seeing with JDK-1.7-SR1. I have executed all these tests, using the same set of Hadoop/Hive-jars, the only change being the JDK-version. Could you please see the same & provide your inputs / suggestions on how to proceed further with this issue. Thanks, Ravi
