Taylor created AMBARI-24643:
-------------------------------
Summary: Ambari doesn't update Kerberos rules when multiple KDCs
in are in place
Key: AMBARI-24643
URL: https://issues.apache.org/jira/browse/AMBARI-24643
Project: Ambari
Issue Type: Bug
Environment: HDF 3.2 / HDP 3.0
Reporter: Taylor
Kerberos rules for components are by default configured to this
value:RULE:[1:$1@$0](.*@REALM)s/@.*// or
RULE:[2:$1@$0]([jt]t@.*[EXAMPLE.COM|http://example.com/])s/.*/$MAPRED_USER/
RULE:[2:$1@$0]([nd]n@.*[EXAMPLE.COM|http://example.com/])s/.*/$HDFS_USER/DEFAULT
When multiple KDCs are in place, this value needs to be changed in all
locations to match the following: RULE:[1:$1@$0](.*@HDPCLOUD)s/@.*// DEFAULT
When using the default rule errors are seen accessing Schema Registry and SAM,
and rules need to be changed for Storm / Kafka / HDFS and others.
--
This message was sent by Atlassian JIRA
(v7.6.3#76005)
