[
https://issues.apache.org/jira/browse/HIVE-14888?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15546642#comment-15546642
]
Thomas Rega commented on HIVE-14888:
------------------------------------
Oh! I noticed they recently changed the configuration which is being referenced
from HIVE_SERVER2_AUTHENTICATION to HADOOP_SECURITY_AUTHENTICATION. This may
work in the case of ldap-- although I have not tested it, so I guess the
question is whether that way is preferred over
UserGroupInformation.isSecurityEnabled().
> SparkClientImpl checks for "kerberos" string in hiveconf only when
> determining whether to use keytab file.
> ----------------------------------------------------------------------------------------------------------
>
> Key: HIVE-14888
> URL: https://issues.apache.org/jira/browse/HIVE-14888
> Project: Hive
> Issue Type: Bug
> Components: spark-branch
> Affects Versions: 2.1.0
> Reporter: Thomas Rega
> Assignee: Thomas Rega
> Attachments: HIVE-14888.1-spark.patch
>
> Original Estimate: 5m
> Remaining Estimate: 5m
>
> The SparkClientImpl will only provide a principal and keytab argument if the
> HADOOP_SECURITY_AUTHENTICATION in hive conf is set to "kerberos". This will
> not work on clusters with Hadoop security enabled that are not configured as
> "kerberos", for example, a cluster which is configured for "ldap".
> The solution is to call UserGroupInformation.isSecurityEnabled() instead.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
