Hi Ravi, I'm not very familiar with Sqoop, but from quickly reading their documentation and some other forums/blogs, it seems like the script that NiFi is calling should be doing something like the follow:
kinit <USER PRINCIPAL> <SQOOP2 DIRECTORY>/bin/sqoop.sh client I would think however you execute the script successfully outside of NiFi, would be the same with NiFI, meaning that NiFi is just calling a shell script and shouldn't really need to know that Kerberos is involved. -Bryan On Mon, Oct 24, 2016 at 11:22 AM, Ravi Papisetti (rpapiset) < rpapi...@cisco.com> wrote: > Hi, > > We are planning to use "ExecuteProcess" to run a sqoop script wrapped by > shell. As part of this we want NiFi to use its service principal in secure > mode while submiting executing the script. Otherwise sqoop script is failed > to execute saying "Caused by GSSException: No valid credentials provided > (Mechanism level: Failed to find any Kerberos tgt)", because it is > submitted by NiFi service user (root) that doesn't have any kerberos user > principal. > > Are there any configuration options in NiFi to overcome this issue? > > Our use case is very similar to what is posted here: https://community. > hortonworks.com/questions/18069/how-to-execute-commands- > using-executeprocess-proce.html > > > > Thanks, > > Ravi Papisetti > > Technical Leader > > Services Technology Incubation Center > <http://wwwin.cisco.com/CustAdv/ts/cstg/stic/> > > rpapi...@cisco.com > > Phone: +1 512 340 3377 > > > [image: stic-logo-email-blue] >
