Stack Overflow
Stack Overflow

Questions tagged [mit-kerberos]

78 questions
1
vote
1 answer

Understanding Kerberos principals

I am trying to understand Kerberos basic concepts. I read about the principals over here, which typically looks like: primary/instance@REALM I wanted to ask what exactly is a primary, instance and a realm. Of course there are definitions given on…
rgamber
  • 5,749
  • 10
  • 55
  • 99
1
vote
0 answers

MIT Kerberos tool makes JAAS able to access the Windows LSA? How to do it without the tool

Running a Java app using JAAS i got a surprising effect: The Java client-application wasn't able to access windows LSA, until i installed the MIT Kerberos tool 'kfw-4.0.1-i386.msi' ? The JAAS conf file settings: WEBSTART_CLIENT_CONTEXT { …
Houtman
  • 2,819
  • 2
  • 24
  • 34
1
vote
0 answers

Setting KRB5_CONFIG is thread safe?

I need to set the path of krb5.conf in my code. Please Let me know which is thread safe ? Method 1: Set the Environment variable like setenv("KRB5_CONFIG" ,"/etc/krb5.conf",1); Method 2:(I am not sure whether this will set the krb5.conf file…
user3345390
  • 421
  • 2
  • 6
  • 14
1
vote
2 answers

Service Ticket in Kerberos - Hadoop security

I am trying to secure my hadoop cluster using kerberos. I am able to generate TGT using kinit command. But beyond that I am stucked up. 1) I would like to know what is meant by 'serviceTicket' in reality. (Not as a description); Using which…
Dinesh Kumar P
  • 1,128
  • 2
  • 18
  • 32
0
votes
1 answer

How to run python kafka application with multiple kerberos caches?

I have a python microservice application that on request sends specific message to specific kafka topic with specific principal. All parameters are user controlled in request body. How do I avoid Kafka thread safety problems? I do know that I can…
dimon222
  • 162
  • 2
  • 20
0
votes
0 answers

Sudden Failure in Keytab Authentication, Password Authentication Remains Functional

Unexpectedly, we are encountering authentication failures when utilizing keytabs on our servers, while password-based authentication remains operational. When executing the standard kinit -kt princ.keytab princ@REALM.COM command, everything…
kimnor
  • 1
0
votes
0 answers

Kerberos5: Authentication handshake failure at stage: Could not load file or assembly 'Oracle.ManagedDataAccessIOP, Version=4.122.21.1,

We are trying to connect oracle 19c AWS RDS via dotnet 4.8 console application using kerberos authentication . i am using [Oracle.ManagedDataAccess] driver (https://www.nuget.org/packages/Oracle.ManagedDataAccess/21.9.0). We have already included…
Vinay Jha
  • 1
  • 1
0
votes
0 answers

How to access Kerberos Secured UI using nginx with Username And Password

We have Hadoop Cluster In VPC. To connect any node inside VPC we have to ssh into jump machine and then from that jump machine we have to ssh into any node of hadoop. A single point of contact to cluster is 22 port of jump machine. No other ports…
Uddhav Savani
  • 31
  • 6
0
votes
1 answer

Web interface login Apache Hadoop Cluster with Kerberos

I've a Docker stack with an Apache Hadoop (version 3.3.4) cluster, composed by one namenode and two datanodes, and a container with both Kerberos admin server and Kerberos kdc. I'm trying to configure Kerberos authentication on the Apache Hadoop…
C. Fabiani
  • 129
  • 2
  • 12
0
votes
0 answers

How to change kerberos user password in shell script

I want to figure out a way on how to change the kerberos password in shell script? I understood that we can change the password of a principal by running below command as mentioned in below link, kadmin: cpw…
ash_ketchum12
  • 73
  • 6
0
votes
0 answers

Invalid argument (400) - Cannot find key of appropriate type to decrypt AP REP - AES256 CTS mode with HMAC SHA1-96

The issue is observed with "curl --service-name test --negotiate:u http://localhost:8080/api". The command is used to test an API running in the same host protected by Kerberos. SPN = "test/localhost@EXAMPLE.COM". I have tried providing all access…
Sanjay
  • 11
  • 1
0
votes
1 answer

ODBC Hive, Credential cache is empty

I got error "Credential cache is empty" during ODBC Hive tests. See full error detail ODBC Hive - Test Results [Cloudera][Hardy] (34) Error from server: SASL(-1): generic failure: GSSAPI Error: Unspecified GSS failure. Minor code may provide more…
user20531732
0
votes
2 answers

Windows MIT Kerberos, error 1765328190, krb5_cc_set_flags

I got error with MIT Kerberos, during testing ODBC connection to the HIVE Credentils cache permissions incorrect (Kerberos error -1765328190) krb5_cc_set_flags failed How do you solve this issue? I made these steps: I reinstall kfw-4.1-amd64.msi,…
user20531732
0
votes
0 answers

What all configuration changes required for sqoop to work for remote hdfs and remote hive?

my requirement is to move data from oracle database to remote hdfs file systems, remote hive with kerberos authentication. What are the configuration changes that I need to make in my local installation of hive, hadoop, sqoop, kerberos in order to…
noobcoder
  • 3
  • 2
0
votes
1 answer

Get cifs service ticket for the user credential using krb5

I am trying to get the krb5 service ticket for the cifs server using the below code. I am able to get the intial creds for the smb user. But when I try to get the cifs service ticket for the smb server, I am getting error PRINCIPAL_UNKNOWN error. In…
suresh
  • 4,084
  • 10
  • 44
  • 59
1 2
3
4 5 6