Unfortunately no. Adding authentication means that all parties have to authenticate themselves against others. So region servers should be authenticated to connect to the master as well as the master should be kerberized already. Don't forget that clients should be authenticated as well.
Thanks, Sergey On Wed, Oct 20, 2021 at 12:09 PM Sai Sandeep Rangisetti <sandeep....@flipkart.com.invalid> wrote: > Hi, > > We have a running hbase cluster and we want to kerberize and eventually add > ranger authorization as well. All the online documentions/tutorials mention > restarting the cluster after adding the kerberos related configs. But can > we do it in a rolling restart so the cluster is still available? > > -- > > > > *-----------------------------------------------------------------------------------------* > > *This email and any files transmitted with it are confidential and > intended solely for the use of the individual or entity to whom they are > addressed. If you have received this email in error, please notify the > system manager. This message contains confidential information and is > intended only for the individual named. If you are not the named > addressee, > you should not disseminate, distribute or copy this email. Please notify > the sender immediately by email if you have received this email by mistake > and delete this email from your system. If you are not the intended > recipient, you are notified that disclosing, copying, distributing or > taking any action in reliance on the contents of this information is > strictly prohibited.***** > > **** > > *Any views or opinions presented in this > email are solely those of the author and do not necessarily represent > those > of the organization. Any information on shares, debentures or similar > instruments, recommended product pricing, valuations and the like are for > information purposes only. It is not meant to be an instruction or > recommendation, as the case may be, to buy or to sell securities, > products, > services nor an offer to buy or sell securities, products or services > unless specifically stated to be so on behalf of the Flipkart group. > Employees of the Flipkart group of companies are expressly required not to > make defamatory statements and not to infringe or authorise any > infringement of copyright or any other legal right by email > communications. > Any such communication is contrary to organizational policy and outside > the > scope of the employment of the individual concerned. The organization will > not accept any liability in respect of such communication, and the > employee > responsible will be personally liable for any damages or other liability > arising.***** > > **** > > *Our organization accepts no liability for the > content of this email, or for the consequences of any actions taken on the > basis of the information *provided,* unless that information is > subsequently confirmed in writing. If you are not the intended recipient, > you are notified that disclosing, copying, distributing or taking any > action in reliance on the contents of this information is strictly > prohibited.* > > > _-----------------------------------------------------------------------------------------_ >
