shifu.zheng
Reputation: 711
Connecting to Kerberized HBase from Windows: Failed to specify server's Kerberos principal name
Here is my code to connect to HBase using kerberos:
Configuration conf = HBaseConfiguration.create();
conf.set("hbase.zookeeper.quorum", "20.20.100.1");
conf.set("hbase.zookeeper.property.clientPort", "2181");
final String USER_KEY = "appuser.principal";
final String KEYTAB_KEY = "appuser.keytab.filename";
final String Key_user = Config.getProperties().getString("kerberos_keyuser");
final String Key_tab = Config.getProperties().getString("kerberos_keytab");
conf.set("hadoop.security.authentication", "kerberos");
conf.set("hbase.security.authentication", "kerberos");
conf.set(USER_KEY, Key_user);
conf.set(KEYTAB_KEY, Key_tab);
SecurityUtil.login(conf, KEYTAB_KEY, USER_KEY);
Connection connection = ConnectionFactory.createConnection(conf);
try (Table table = connection.getTable(TableName.valueOf("newssentiment:test"))) {
Scan scan = new Scan();
ResultScanner scanner = table.getScanner(scan);
Iterator<Result> iterator = scanner.iterator();
System.out.println();
while(iterator.hasNext()) {
System.out.println(iterator.next());
}
}
catch (Exception e){
System.out.print(e.getMessage());
}
HBaseAdmin.checkHBaseAvailable(conf);
connection.close();
System.out.println("HBase is running!");
But I get the following errors:
org.apache.hadoop.security.UserGroupInformation - PriviledgedActionException as:u8000 (auth:SIMPLE) cause:java.io.IOException: Failed to specify server's Kerberos principal name
org.apache.hadoop.hbase.ipc.AbstractRpcClient - Exception encountered while connecting to the server : java.io.IOException: Failed to specify server's Kerberos principal name
org.apache.hadoop.security.UserGroupInformation - PriviledgedActionException as:u8000 (auth:SIMPLE) cause:java.io.IOException: java.io.IOException: Failed to specify server's Kerberos principal name
The same code can run successfully on Linux, but it always failed on Windows.
Upvotes: 0
Views: 1408
Answers (1)
Farooque
Reputation: 3766
Just replace SecurityUtil.login(conf, KEYTAB_KEY, USER_KEY); with
UserGroupInformation.setConfiguration(conf);
UserGroupInformation.loginUserFromKeytab("USER_KEY", KEYTAB_KEY);
For simplicity, you can write your code as below:
Configuration conf = HBaseConfiguration.create();
conf.addResource(new Path("D:\\core-site.xml");
conf.addResource(new Path("D:\\hbase-site.xml");
System.setProperty( "java.security.krb5.conf", "D:\\krb5.conf");
// give the path of krb5.conf file
UserGroupInformation.setConfiguration(conf);
UserGroupInformation.loginUserFromKeytab("[email protected]", "D:\\farooque.keytab");
// [email protected] is the principal name, give the path of keytab file
Connection connection = ConnectionFactory.createConnection(conf);
try (Table table = connection.getTable(TableName.valueOf("newssentiment:test"))) {
Scan scan = new Scan();
ResultScanner scanner = table.getScanner(scan);
Iterator<Result> iterator = scanner.iterator();
System.out.println();
while(iterator.hasNext()) {
System.out.println(iterator.next());
}
}
catch (Exception e){
System.out.print(e.getMessage());
}
HBaseAdmin.checkHBaseAvailable(conf);
connection.close();
System.out.println("HBase is running!");
If above code runs successfully, you can replace fixed values with variables.
Upvotes: 1
Related Questions
- Failed to Find Any Kerberos TGT while trying to access Kerberized HBase Without kinit
- Hbase-client kerberos authentication working only on local computer
- Kerberos error connecting to impala and hbase
- HBase keeps doing SIMPLE authentication
- Connecting to Kerberrized HDFS , java.lang.IllegalArgumentException: Failed to specify server's Kerberos principal name;
- Spark connection to Hbase in Kerberos environement failing
- Unable to connect to HBase stand alone server from windows remote client
- How to enable kerberos authetication when connecting to secure hbase cluster
- KERBEROS error while running mapreduce on Hbase
- Unable to connect to Hbase remotly