Disabling Kerberos authentication for HBase clients
Client applications that run on legacy products and do not have Kerberos enabled,
fail to connect to COD instances that have Kerberos enabled. You can disable Kerberos
authentication in your COD instances so that HBase or Phoenix clients can connect
seamlessly.
In Cloudera Manager, go to the HBase service.
In the Configuration tab, set
hbase.security.authentication=simple under HBase
Secure Authentication and hbase.thrift.security.qop=none
under HBase Thrift Authentication.
In the Ranger web UI, add the phoenix user. This resolves the impersonation
issue.
On the Data lake page, select the Ranger service.
On the Ranger Service Manager web UI, find and select the HBase policy
for your COD instance.
Click on the edit button in the Action column to
edit the all - table, column-family, column
policy.
In the Ranger service manager edit policy page, add the phoenix user
and save the modified policy.
Kerberos authentication is disabled in your COD instance and
legacy HBase or Phoenix clients without having Kerberos enabled, can connect to your COD
instance.