Regenerating Kerberos Credentials in Cloudera Manager Fails After Enabling AD Kerberos and Sentry on BDA V4.2

(Doc ID 2067381.1)

Last updated on SEPTEMBER 08, 2017

Applies to:

Big Data Appliance Integrated Software - Version 4.2.0 and later
Linux x86-64

Symptoms

  

Note:  You can not use multiple Organizational Units.

Regenerating Kerberos credentials in Cloudera Manager (CM) fails after enabling AD Kerberos and Sentry on BDA V4.2.

Both scenarios below fail to regenerate Kerberos Credentials in Cloudera Manager.

1. Regenerating credentials by selecting all credentials and issuing "Regenerate Selected (X)" in CM fails.

a) For this scenario navigate in CM: Administration > Kerberos > Credentials > Select: Principal > Regenerate Selected

For example:



b) The credential regeneration does not complete.

2. Regenerating credentials by selecting "Generate Credentials" in CM fails.

a) For this scenario navigate in CM: Administration -> Kerberos -> Credentials -> Generate Credentials

For example:



b) The credential regeneration issues raises an error: "No credentials found".



c) And the error stack shows:

echo 'HTTP/bdanode01.example.com@EXAMPLE.COM already exists in Active Directory. Please delete it before re-generating it from Cloudera Manager.'






Cause

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms