Hi Just a quick thought on this: You might be able to use delegation token to access HBase[1]. It might be a more secure way instead of distributing your keytab over to all the YARN nodes.
Hope this helps. -- Rong [1] https://wiki.apache.org/hadoop/Hbase/HBaseTokenAuthentication On Mon, Sep 24, 2018 at 7:51 PM sanmutongzi <laolang...@gmail.com> wrote: > Hi Aljoscha, > Sorry for my late response . According to my experience , if the > flink-conf.yaml has set the "security.kerberos.login.keytab" and > "security.kerberos.login.contexts" with a kerberos file then yarn will > ship the keytab file to the TaskManager . > Also i can find the log like: > " INFO org.apache.flink.configuration.GlobalConfiguration - > Loading configuration property: security.kerberos.login.keytab, > > /data1/yarn/nm/usercache/hadoop/appcache/application_1537515506704_0007/container_e28_1537515506704_0007_01_000001/krb5.keytab" > in the TaskManager log. > My problem is that in the user code like map or sink function how can i get > the security.kerberos.login.keytab value for login . > > THANKS > > > > > -- > Sent from: > http://apache-flink-user-mailing-list-archive.2336050.n4.nabble.com/ >