Kerberos authentication for Web Hadoop File Systems

The Complete Row by Row Comparison Module offers Kerberos authentication on Hadoop file systems. You can use Hadoop files either as a source or a target for any Complete Row by Row Comparison TestCase.

The Module contains a Web Hadoop File Systems (WebHDFS) element in both source and target.

In order to use Kerberos authentication on Hadoop file systems, you have to specify an authentication type.

Your choice of authentication type depends on the following:

Authentication type	Condition
None	The server specified in Base URL does not require any type of authentication.
Kerberos Username/Password	The server specified in Base URL uses Kerberos to restrict access to its content. You know the Principal/UserID and password. UserID and password are required.
Kerberos Keytab	The server specified in Base URL uses Kerberos to restrict access to its content. You want to use a Kerberos keytab file for authentication. The UserID must contain the Principal name. No password is used as it is encrypted inside the keytab file.

For a complete list of ModuleAttributes for WebHDFS data sources, see chapter "WebHDFS data sources".

Set up Kerberos authentication

If you want to set up Kerberos authentication, follow the steps below:

1. Copy the following files to %TBOX_HOME%:

   • Kerberos file krb5.conf

   • Kerberos file login.conf

2. Rename the files:

   • Rename krb5.conf to tricentis.krb5.ini

   • Rename login.conf to tricentis.login.conf

If you chose the Kerberos Keytab authentication type, follow the steps below:

1. Copy the previously used Kerberos keytab file to %TBOX_HOME%.

2. Open the file tricentis.login.conf in a text editor.

3. In the client-keytab section, replace the expression tricentis.keytab with the name of the actual Kerberos keytab file.

4. Save and close the file.

Tricentis recommends that you remove all lines specifying the following encryption types from the tricentis.krb5.ini file: default_tgs_enctypes default_tkt_enctypes permitted_enctypes