23-11-2020 08:51 AM - edited 23-11-2020 09:42 AM
Dear all,
I'm trying establish a connection from Exasol to Impala that is Kerberos secured.
This is what I've found on Github:
python tools/create_kerberos_conn.py krb_conn krbuser@EXAMPLE.COM /etc/krb5.conf ./krbuser.keytab \
'jdbc:impala://<Impala host>:<port>;AuthMech=1;KrbRealm=EXAMPLE.COM;KrbHostFQDN=host.example.com;KrbServiceName=impala'
I've done this already while I was connecting Cognos to Impala, so I have all the files.
What I am not sure is where do I need to store the krb5.conf and *.keytab file? On local machine or do I need to upload it to Exasol server.
I'm not much of UNIX/Linux person, so if those files need to be on Exasol server, can you tell me how to do it?
Thank you in advance!
Goran
24-11-2020 03:13 PM
I will try to see if there is somekind of firewall problem.
25-11-2020 10:55 AM
Firewall is not an issue.
23-11-2020 12:08 PM
Hi Goran,
You don't need to store the conf or keytab file in the Exasol server. You need to run the python script on your local machine (or any machine) and within your execution put the path to the conf and keytab file there.
The script will generate a CREATE CONNECTION command which you just need to copy to the database.
23-11-2020 01:05 PM - edited 23-11-2020 01:18 PM
Thank you for your answer!
I need to install Python locally, run the script and hopefully everything will be fine.
23-11-2020 02:21 PM
Fingers crossed that everything's fine 😉
24-11-2020 02:49 PM - edited 24-11-2020 02:52 PM
Well, it doesn't work yet and I still need a little bit of help.
I've installed Python and I was able to run the create_kerberos_conn.py
Syntax:
python folder> create_kerberos_conn_py -r -o out.txt IMPALA_CONNECTION bddwh@BDSIM.SIT.PBZ.HR krb5.conf krb5.keytab
Result was out.exe file (see in attachment)
After that I run on DBVisualizer following code:
CREATE OR REPLACE CONNECTION IMPALA_CONNECTION TO 'jdbc:impala://<server_name>:<port>;AuthMech=1;KrbRealm=BDSIM.SIT.PBZ.HR; KrbHostFQDN=<servername@BDSIM.SIT.PBZ.HR>; KrbService Name = 'impala';
USER bddwh@BDSIM.SIT.PBZ.HR IDENTIFIED BY 'large string from out.txt file'
I have tried with FQDN and with IP adress for server name.
The error message is also in attachment.
Thank you in advance!
Goran
Then it's time to become part of a unique family! Discover helpful tips and support other Community members with your knowledge.
Sign In