Submitting A Command Line Oozie Job With Kerberos Fails With SPENGO Error (Doc ID 1932192.1)

Last updated on OCTOBER 06, 2014

Applies to:

Big Data Appliance Integrated Software - Version 3.0.1 and later
Linux x86-64

Symptoms

Submitting an oozie job in the kerberos enabled environment fails with following SPENGO Errors.

$ klist
Ticket cache: FILE:/tmp/krb5cc_cdc8805018_nhehQ1
Default principal: <username>@CORP.EXAMPLE.COM

Valid starting Expires Service principal
09/18/14 14:45:23 09/19/14 00:45:23 krbtgt/CORP.EXAMPLE.COM@CORP.EXAMPLE.COM
renew until 09/25/14 14:45:23


$ oozie job -oozie http://node04:11000/oozie -config job.properties -run

Error: AUTHENTICATION : Could not authenticate, org.apache.hadoop.security.authentication.client.AuthenticationException: Invalid SPNEGO sequence, 'WWW-Authenticate' header incorrect: null

 

Destroying the user authentication and reinitiating it still fails with same error:

$ kdestroy
$ kinit uimsxx
Password for uimsxx@CORP.EXAMPLE.COM:


$ oozie job -oozie http://node04:11000/oozie -config job.properties -run

Error: AUTHENTICATION : Could not authenticate, org.apache.hadoop.security.authentication.client.AuthenticationException: Invalid SPNEGO sequence, 'WWW-Authenticate' header incorrect: null

 

Oozie log shows the following error:

014-09-18 14:46:07,866 WARN org.apache.hadoop.security.authentication.server.AuthenticationFilter: SERVER[node04.example.com] Authentication exception: GSSException: Failure unspecified at GSS-API level (Mechanism level: Invalid argument (400) - Cannot find key of appropriate type to decrypt AP REP - AES256 CTS mode with HMAC SHA1-96)

org.apache.hadoop.security.authentication.client.AuthenticationException: GSSException: Failure unspecified at GSS-API level (Mechanism level: Invalid argument (400) - Cannot find key of appropriate type to decrypt AP REP - AES256 CTS mode with HMAC SHA1-96)

 

Cause

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms