Stack Overflow
Stack Overflow

Questions tagged [mit-kerberos]

78 questions
14
votes
2 answers

"mount error(126): Required key not available" with CIFS & Kerberos

My application needs to securely mount an Isilon share using CIFS and Kerberos. My mount attempt returns: Required key not available: mount -t cifs //fileserver.example.com/client123/files /mnt/client123/files -o…
a coder
  • 7,530
  • 20
  • 84
  • 131
8
votes
1 answer

How to prevent browser from sending NTLM credentials?

I’m working on a site where we want to use Kerberos authentication using Spring Security Kerberos. So, we don’t support NTLM. When the user makes an unauthenticated request, the server will reply with an HTTP 401 with header WWW-Authenticate:…
Stephen Rosenthal
  • 773
  • 4
  • 15
6
votes
0 answers

kinit(v5): Key table entry not found while getting initial credentials

I followed following steps to setup KDC & kerberos. Now while kinit facing following issue. OS - SUSE 11 1. zypper install krb5 krb5-server krb5-client 2. Updated krb5.conf with proper realm details. 3. kdb5_util create -s
Himansu
  • 308
  • 4
  • 15
6
votes
2 answers

Hadoop Security

I am trying to learn " How Kerberos can be implemented in Hadoop ?" I have gone through this doc https://issues.apache.org/jira/browse/HADOOP-4487 I have also gone through Basic Kerberos stuff ( https://www.youtube.com/watch?v=KD2Q-2ToloE) After…
Rohit Sarewar
  • 157
  • 9
5
votes
1 answer

Kerberos kinit: Unknown credential cache type while getting default ccache

I'm using Kerberos on Bash and am attempting to run the kinit command. I keep getting this error: kinit: Unknown credential cache type while getting default ccache This error also appears for literally any other Kerberos command I run (klist,…
Amit Akula
  • 51
  • 1
  • 1
  • 2
4
votes
0 answers

Kerberos Cross Realm HDFS Access Via Spark Application

We are trying to do data transfer between two clusters which are enabled with cross-realm authentication using the MIT KDC and Ranger. DistCP is working without any issues.But, the Spark application in cluster A which is supposed to write data to…
Pramod GM
  • 41
  • 1
  • 3
4
votes
0 answers

Getting failed with no key to store while starting Ranger KMS service via ambari

My cluster is kerberos enabled and I am getting "No key to store" error while starting ranger kms from ambari UI:- **ERROR [/kms] - Exception starting filter authFilter javax.servlet.ServletException:…
Ankit Tripathi
  • 325
  • 2
  • 12
3
votes
1 answer

Unable to access Hadoop CLI after enabling Kerberos

I've followed the following tutorial CDH Hadoop Kerberos, NameNode and DataNode are able to start properly and I'm able to see all the DataNode listed on the WebUI (0.0.0.0:50070). But I'm unable to access the Hadoop CLI. I've followed this tutorial…
Saif Ahmad
  • 1,118
  • 1
  • 8
  • 24
3
votes
0 answers

PriviledgedActionException (failed to find any kerberos tgt)

I am connecting to hdfs by using kerberos as authentication mechanism,I am running a job which takes 3 days to complete,I am getting this error: org.apache.hadoop.security.UserGroupInformation - PriviledgedActionException…
Akhil
  • 391
  • 3
  • 20
3
votes
0 answers

Set Kerberos KDC adress in C API without using krb5.conf file

I'm writing an C application which authenticate an user via MIT Kerberos. krb5_get_init_creds_password(..) works fine, john.doe@EXAMPLE.COM can be authenticated, but i have to define [realms] EXAMPLE.COM = { kdc = example.com } in…
darwin.files
  • 31
  • 2
3
votes
2 answers

How can I get a Kerberos ticket in Python

Is there a way to create a Kerberos ticket in Python if you know the username/password? I have MIT Kerberos in place and I can do this interactively through KINIT but want to do it from Python.
Keith Adler
  • 20,880
  • 28
  • 119
  • 189
2
votes
0 answers

C++ Memory leak issue

I am trying to find a memory leak in my code but for the life of me, I cannot figure out or identify the reason for this leak. Which is why I am reaching out to your all. Thanks in advance. The following code, creates a kerberos cache from keytab.…
Amirul I
  • 191
  • 3
  • 15
2
votes
1 answer

Why does "Local realm referral" fail with MIT-Kerberos?

I'm trying to set up cross-realm authentication between 2 KDC's (EXAMPLE.COM & HADOOP.COM) so that a user in realm EXAMPLE.COM can access a service in HADOOP.COM. I've added a capaths section to my krb5.conf for the same: [logging] default =…
pratyush.parimal
  • 23
  • 4
2
votes
1 answer

Kerberos master-slave setup : Database propagation, and KDC & KADMIN switching

I am trying to setup Kerberos on Redhat with slaves and database propagation (not incremental). I am going through MIT's documentation for KDC installation and configuration. Currently, I have three doubts/issues: Do we need kpropd running on slave…
Harman
  • 751
  • 1
  • 9
  • 31
2
votes
4 answers

Kerberos kadmin service error

I need to setup kerberos security , but while running kadmin service i am getting following error. service kadmin start Starting Kerberos 5 Admin Server: kadmind: Cannot set GSS-API authentication names.[FAILED]
nat
  • 557
  • 2
  • 11
  • 25
1
2 3 4 5 6