We have Hadoop Cluster In VPC. To connect any node inside VPC we have to ssh into jump machine and then from that jump machine we have to ssh into any node of hadoop. A single point of contact to cluster is 22 port of jump machine. No other ports are enabled. Thats why we uses ssh tunnling to port forward the HTTP request to HADOOP Namenode UI or Resourcemanager UI.
Recently we introduced kerberos security in hadoop cluster. Now Its UI requires kerberos ticket to access any of the resources. Now for the same we had to tunnle one more port which is kerberos KDC to aquire ticket when we access UI.
So i want to know is there any software or tool which proxy this UI, which gives prompt to enter username and password once we enter it, that software use it to acquire ticket and servers us UI. We don't have to tunnel kdc ports and we don't have to maintain Kerberos ticket cache in host machine instead browser and that tool manages it.
On my web surfing I came across https://github.com/stnoonan/spnego-http-auth-nginx-module module but I am not sure whether it achieves the same functionality or not I tried out but I didn't achieved similar functionality.
