My Oracle Support Banner

Regenerating Kerberos Credentials in Cloudera Manager Fails After Enabling AD Kerberos and Sentry on BDA V4.2 (Doc ID 2067381.1)

Last updated on JANUARY 02, 2020

Applies to:

Big Data Appliance Integrated Software - Version 4.2.0 and later
Linux x86-64

Symptoms

NOTE: In the images, examples and document that follow, user details, cluster names, hostnames, directory paths, filenames, etc. represent a fictitious sample (and are used to provide an illustrative example only). Any similarity to actual persons, or entities, living or dead, is purely coincidental and not intended in any manner. 

 

  

Note:  You can not use multiple Organizational Units.

Regenerating Kerberos credentials in Cloudera Manager (CM) fails after enabling AD Kerberos and Sentry on BDA V4.2.

Both scenarios below fail to regenerate Kerberos Credentials in Cloudera Manager.

1. Regenerating credentials by selecting all credentials and issuing "Regenerate Selected (X)" in CM fails.

a) For this scenario navigate in CM: Administration > Kerberos > Credentials > Select: Principal > Regenerate Selected

For example:



b) The credential regeneration does not complete.

2. Regenerating credentials by selecting "Generate Credentials" in CM fails.

a) For this scenario navigate in CM: Administration -> Kerberos -> Credentials -> Generate Credentials

For example:



b) The credential regeneration issues raises an error: "No credentials found".



c) And the error stack shows:

echo 'HTTP/bdanode01.example.com@EXAMPLE.COM already exists in Active Directory. Please delete it before re-generating it from Cloudera Manager.'



Cause

To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!


In this Document
Symptoms
Cause
Solution


My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.