5. Configuring for Secure Clusters

If you are using secure clusters, verify that hadoop.security.auth_to_local in core-site.xml is consistent across all clusters.

[Warning]Warning

Inconsistencies in rules for hadoop.security.auth_to_local can lead to issues with delegation token renewals.

You must also create the following property definitions in your cluster entity or entities:

<properties>
   <property name="dfs.namenode.kerberos.principal" value="nn/$my.internal@EXAMPLE.COM"/>
   <property name="hive.metastore.kerberos.principal" value="hive/$my.internal@EXAMPLE.COM"/>
   <property name="hive.metastore.uris" value="thrift://$my.internal:9083"/>
   <property name="hive.metastore.sasl.enabled" value="true"/>
</properties>
        
[Note]Note

Replace $my.internal@EXAMPLE.COM and $my.internal with your own values.


loading table of contents...