[
https://issues.apache.org/jira/browse/YARN-1841?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13939272#comment-13939272
]
Daryn Sharp commented on YARN-1841:
-----------------------------------
bq. The fact that it behaves differently once invoked from the AM vs. just a
simple API call to a remote cluster is what I am questioning.
This should work. What issue are you encountering when talking to a remote
service?
bq. ... I understand that this really should not work (I don't even have an
app deployed at the time of invocation of this code) ...
You answered your question but the good news it's possible. You are trying to
emulate an unmanaged AM. It's not possible to just register an AM w/o first
requesting an app & app attempt id from the RM. The subsequent registration
will use a AMRM token that is issued by the RM.
> YARN ignores/overrides explicit security settings
> -------------------------------------------------
>
> Key: YARN-1841
> URL: https://issues.apache.org/jira/browse/YARN-1841
> Project: Hadoop YARN
> Issue Type: Bug
> Components: resourcemanager
> Affects Versions: 2.3.0
> Reporter: Oleg Zhurakousky
>
> core-site.xml explicitly sets authentication as SIMPLE
> {code}
> <property>
> <name>hadoop.security.authentication</name>
> <value>simple</value>
> <description>Simple authentication</description>
> </property>
> {code}
> However any attempt to register ApplicationMaster on the remote YARN cluster
> results in
> {code}
> org.apache.hadoop.security.AccessControlException: SIMPLE authentication is
> not enabled. Available:[TOKEN]
> . . .
> {code}
--
This message was sent by Atlassian JIRA
(v6.2#6252)
