FAQ
Security support for ZK Failover controller
-------------------------------------------

Key: HADOOP-8215
URL: https://issues.apache.org/jira/browse/HADOOP-8215
Project: Hadoop Common
Issue Type: Improvement
Components: ha, security
Affects Versions: 0.23.3, 0.24.0
Reporter: Todd Lipcon
Assignee: Todd Lipcon
Priority: Critical


To keep the initial patches manageable, kerberos security is not currently supported in the ZKFC implementation. This JIRA is to support the following important pieces for security:
- integrate with ZK authentication (kerberos or password-based)
- allow the user to configure ACLs for the relevant znodes
- add keytab configuration and login to the ZKFC daemons
- ensure that the RPCs made by the health monitor and failover controller properly authenticate to the target daemons

--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators: https://issues.apache.org/jira/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira

Search Discussions

  • Todd Lipcon (Resolved) (JIRA) at Apr 3, 2012 at 11:38 pm
    [ https://issues.apache.org/jira/browse/HADOOP-8215?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

    Todd Lipcon resolved HADOOP-8215.
    ---------------------------------

    Resolution: Fixed
    Fix Version/s: Auto Failover (HDFS-3042)
    Hadoop Flags: Reviewed
    Security support for ZK Failover controller
    -------------------------------------------

    Key: HADOOP-8215
    URL: https://issues.apache.org/jira/browse/HADOOP-8215
    Project: Hadoop Common
    Issue Type: Improvement
    Components: auto-failover, ha
    Affects Versions: 0.23.3, 0.24.0
    Reporter: Todd Lipcon
    Assignee: Todd Lipcon
    Priority: Critical
    Fix For: Auto Failover (HDFS-3042)

    Attachments: hadoop-8215.txt, hadoop-8215.txt


    To keep the initial patches manageable, kerberos security is not currently supported in the ZKFC implementation. This JIRA is to support the following important pieces for security:
    - integrate with ZK authentication (kerberos or password-based)
    - allow the user to configure ACLs for the relevant znodes
    - add keytab configuration and login to the ZKFC daemons
    - ensure that the RPCs made by the health monitor and failover controller properly authenticate to the target daemons
    --
    This message is automatically generated by JIRA.
    If you think it was sent incorrectly, please contact your JIRA administrators: https://issues.apache.org/jira/secure/ContactAdministrators!default.jspa
    For more information on JIRA, see: http://www.atlassian.com/software/jira

Related Discussions

Discussion Navigation
viewthread | post
Discussion Overview
groupcommon-dev @
categorieshadoop
postedMar 26, '12 at 10:20p
activeApr 3, '12 at 11:38p
posts2
users1
websitehadoop.apache.org...
irc#hadoop

1 user in discussion

Todd Lipcon (Resolved) (JIRA): 2 posts

People

Translate

site design / logo © 2022 Grokbase