Reputation: 2102
Hbase-client kerberos authentication working only on local computer
I developed a spring application, which uses hbase-client 2.1.1 to authenticate to kerberized hbase with a keytab.
On my local computer I can authenticate successfully and retrieve data, but when I deploy it to a wildfly server I get the following error:
[0m[0m11:58:56,216 INFO [stdout] (ServerService Thread Pool -- 253) Looking for keys for: [email protected]
[0m[0m11:58:56,217 INFO [stdout] (ServerService Thread Pool -- 253) HBase create connection failed: java.io.IOException: Login failure for [email protected] from keytab /home/risorse/S0008533/fc.keytab: javax.security.auth.login.LoginException: Unable to obtain password from user
The keytab is the same, the path is correct and I don't know where to check for other logs.
Any help is really appreciated.
Upvotes: 0
Views: 429
Answers (1)
Reputation: 5125
Can you validate that the user that is trying to use the keytab file can kinit with it. (Does the keytab file have the correct permissions?)
Login as the user that the server will be using the keytab as and perform:
kinit -kt /home/risorse/S0008533/fc.keytab [email protected]
It's likely the case that the spring application user should own the keytab. This is a Really common thing I forget to do all the time.
Upvotes: 1
Related Questions
- Java Client For Secure Hbase
- HBase keeps doing SIMPLE authentication
- Hbase client can't connect to remote Hbase server
- Connecting to Kerberos secured HBase cluster from Java application
- HBase remote Java client tries to authenticate through random port
- Connecting to Kerberized HBase from Windows: Failed to specify server's Kerberos principal name
- Unable to make Java client connection to standlone HBase setup in remote machine
- Hbase client connection fail
- HBase Java client - unknown host: localhost.localdomain
- Not able to remotely connect HBase from java Application