Here are the steps provided for setting up of Kerberos server for securing Hadoop clusters by providing this Kerberos server info.
Steps:
Step 1: Install a new version of the KDC server:
#yum install krb5-server krb5-libs krb5-workstation
Step 2: Change the [realms] section
[root@bkumar3 hdp]# cat /etc/krb5.conf
Note :
#Here "admin_server" and "kdc" are the host FQDN's of the machine where we installed Kerberos.
Step 3: Use the utility kdb5_util to create the Kerberos database.
[root@bkumar3 ~]# kdb5_util create -s
Loading random data
Initializing database '/var/kerberos/krb5kdc/principal' for realm 'EXAMPLE.COM',
master key name 'K/M@EXAMPLE.COM'
You will be prompted for the database Master Password.
It is important that you NOT FORGET this password.
Enter KDC database master key: <hadoop>
Re-enter KDC database master key to verify: <hadoop>
Step 4:Start the KDC server and the KDC admin server.
[root@bkumar3 ~]# systemctl start krb5kdc
[root@bkumar3 ~]#
[root@bkumar3 ~]# systemctl start kadmin
Step 5: Create a KDC admin by creating an admin principal.
[root@bkumar3 ~]# kadmin.local -q "addprinc root/admin@EXAMPLE.COM"
Authenticating as principal root/admin@EXAMPLE.COM with password.
WARNING: no policy specified for root/admin@EXAMPLE.COM; defaulting to no policy
Enter password for principal "root/admin@EXAMPLE.COM":
Re-enter password for principal "root/admin@EXAMPLE.COM":
Principal "root/admin@EXAMPLE.COM" created.
Reference link:
https://docs.hortonworks.com/HDPDocuments/Ambari-2.5.0.3/bk_ambari-security/content/optional_install_a_new_mit_kdc.html
Here all content so useful and helpful for beginner and experience both.This site is so amazing, This sites gives <a href="https://training.javatpoint.com/big-data-hadoop-training>good knowledge of Bigdata-hadoop </a>,This is very helpful for me.
ReplyDelete