Hello Todd,
after the workaround, we gone in production, I will
test asap in a new environment of test in the next days.
Kind regards
Matteo Durighetto
2017-10-24 21:46 GMT+02:00 Todd Lipcon :
> On Tue, Oct 24, 2017 at 12:41 PM, Todd Lipcon wrote:
>
>> I've filed https
On Tue, Oct 24, 2017 at 12:41 PM, Todd Lipcon wrote:
> I've filed https://issues.apache.org/jira/browse/KUDU-2198 to provide a
> workaround for systems like this. I should have a patch up shortly since
> it's relatively simple.
>
>
... and here's the patch, if you want to try it out, Matteo:
http
I've filed https://issues.apache.org/jira/browse/KUDU-2198 to provide a
workaround for systems like this. I should have a patch up shortly since
it's relatively simple.
-Todd
On Tue, Oct 17, 2017 at 7:00 PM, Brock Noland wrote:
> Just one clarification below...
>
> > On Mon, Oct 16, 2017 at 2:2
Just one clarification below...
> On Mon, Oct 16, 2017 at 2:29 PM, Matteo Durighetto
> wrote:
> the "abcdefgh1234" it's an example of the the string created by the cloudera
> manager during the enable kerberos.
...
On Mon, Oct 16, 2017 at 11:57 PM, Todd Lipcon wrote:
> Interesting. What is t
Hello Todd,
because our systems are join in AD Domain with red hat
SSSD, this system map the principal bypassing krb5.conf
and map every principal to an univocal sAMAccount, the sAMAccount is a
unique attribute of the entry of an AD record ( https://blogs.msdn.microsoft
.com/open
On Mon, Oct 16, 2017 at 2:29 PM, Matteo Durighetto
wrote:
> Hello Todd,
>thank you very much for the answer. I think I have
> found something interesting.
>
> Kudu is doing the ACL list with the sAMAccountName or CN as it writes in
> the logs:
>
> "Logged in from keytab as k
Hello Todd,
thank you very much for the answer. I think I have found
something interesting.
Kudu is doing the ACL list with the sAMAccountName or CN as it writes in
the logs:
"Logged in from keytab as kudu/@REALM (short username
)"
I begin to think that the problem is betwe
Hey Matteo,
Looks like you did quite a bit of digging in the code! Responses inline
below.
On Wed, Oct 11, 2017 at 1:24 PM, Matteo Durighetto
wrote:
> Hello,
>I have a strange behaviour with Kudu 1.4 and kerberos.
> I enabled kerberos on kudu, I have the principal correctly in the O
Hello,
I have a strange behaviour with Kudu 1.4 and kerberos.
I enabled kerberos on kudu, I have the principal correctly in the OU of an
AD, but
at startup I got a lot of errors on method TSHeartbeat between tablet
server and
master server as unauthorized. There's no firewall between nod