Thanks Mate and Arpit, I'll check out your suggestions.
Jorn,
1. Did you register the service principal correctly in your AD/KDC?
1. yes, the client and principals are registered in KDC. using kinit
with keytab on the remote server was generating the TGT as expected.
2. If AD
Kerberos can be quite a beast for any application. I managed to use Kerberos
authentication for Zookeeper a couple of times. Usually the error messages in
Java are meaningless.
Did you register the service principal correctly in your AD/KDC?
If AD then did you make sure that the attribute for
Hi,
I tried it a few months ago and managed to do it. I am not either an expert
on this but managed to do the SASL authentication between ZK and client
I ran the Kerberos server using this image
https://hub.docker.com/r/gcavalcante8808/krb5-server/.
Thanks
On Thu, Jun 11, 2020 at 9:12 AM
Hello Aparajita,
After a quick glance on your configs and logs, I haven't found any problem
with your zookeeper configs. I am not sure if you know this page, using
these steps worked for me to setup a kerberized zookeeper:
https://github.com/ekoontz/zookeeper/wiki
I guess you are also familiar
gentle reminder
(unquoting the previous email)
--
Hi,
I am trying to migrate an unauthenticated zookeeper cluster to a kerberos
authenticated one. For the time being SSL is disabled. I have configured
the server and client as described below but when SASL is enabled I am
unable to retreive data