mirror of
https://github.com/didi/KnowStreaming.git
synced 2026-01-05 13:08:48 +08:00
修改代码支持ZK-Kerberos认证与配置文档
This commit is contained in:
luhe
@@ -16,12 +16,19 @@ https://github.com/didi/KnowStreaming/blob/master/docs/install_guide/%E6%BA%90%E
|
|||||||
|
|
||||||
5、可以登录后,配置/opt/zookeeper.jass文件:
|
5、可以登录后,配置/opt/zookeeper.jass文件:
|
||||||
Client {
|
Client {
|
||||||
|
|
||||||
com.sun.security.auth.module.Krb5LoginModule required
|
com.sun.security.auth.module.Krb5LoginModule required
|
||||||
|
|
||||||
useKeyTab=true
|
useKeyTab=true
|
||||||
|
|
||||||
storeKey=false
|
storeKey=false
|
||||||
|
|
||||||
serviceName="zookeeper"
|
serviceName="zookeeper"
|
||||||
|
|
||||||
keyTab="/etc/keytab/zookeeper.keytab"
|
keyTab="/etc/keytab/zookeeper.keytab"
|
||||||
|
|
||||||
principal="kafka/dbs-kafka-test-8-53@XXX.XXX.XXX";
|
principal="kafka/dbs-kafka-test-8-53@XXX.XXX.XXX";
|
||||||
|
|
||||||
};
|
};
|
||||||
|
|
||||||
6、需要配置KDC-Server对KS的机器开通防火墙,并在KS的机器/etc/host/ 配置 kdc-server的hostname。并将 krb5.conf 导入到/etc下
|
6、需要配置KDC-Server对KS的机器开通防火墙,并在KS的机器/etc/host/ 配置 kdc-server的hostname。并将 krb5.conf 导入到/etc下
|
||||||
|
|||||||
Reference in New Issue
Block a user