My Oracle Support Banner

NameNodes Will Not Start on BDA V4.2 When Enabling AD Kerberos with Centrify (Doc ID 2025681.1)

Last updated on DECEMBER 04, 2019

Applies to:

Big Data Appliance Integrated Software - Version 4.2.0 and later
Linux x86-64


NOTE: In the examples that follow, user details, cluster names, hostnames, directory paths, filenames, etc. represent a fictitious sample (and are used to provide an illustrative example only). Any similarity to actual persons, or entities, living or dead, is purely coincidental and not intended in any manner.


On BDA V4.2 when enabling AD Kerberos, the NameNode service will not come up.  The NameNode logs,  /var/log/hadoop-hdfs/hadoop-cmf-hdfs-NAMENODE-<HOSTNAME>.<DOMAIN>.log.out,  show errors like:

2015-06-10 11:06:56,220 WARN
  PriviledgedActionException as:hdfs/ (auth:KERBEROS)
  GSSException: No valid credentials provided (Mechanism level: Server not found in Kerberos database (7))
2015-06-10 11:06:56,221 ERROR org.apache.hadoop.hdfs.server.namenode.EditLogInputStream:
  caught exception initializing GSSException:
  No valid credentials provided (Mechanism level: Server not found in Kerberos database (7))
       at org.apache.hadoop.hdfs.server.namenode.EditLogFileInputStream$URLLog$
       at org.apache.hadoop.hdfs.server.namenode.EditLogFileInputStream$URLLog$
       at Method)
       at org.apache.hadoop.hdfs.server.namenode.EditLogFileInputStream$URLLog.getInputStream(
       at org.apache.hadoop.hdfs.server.namenode.EditLogFileInputStream.init(

This indicates that the NameNodes can not connect with the Journal Nodes when they start up, and so can not authenticate.


To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!

In this Document

My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.