Validating Active Directory Integration
- Sign in to a node in your Big Data Service cluster.
-
Create a token:
kinit <myuser@ad.domain.com> - Enter the principle password (the Active Directory password of the user), and then click Enter.
-
Verify that the token was created:
klist
Example output:
Ticket cache: FILE:/tmp/krb5cc_1000 Default principal: <myuser@ad.domain.com> Valid starting Expires Service principal 09/01/2021 20:44:07 09/02/2021 06:44:07 krbtgt/<ad-realm>@<ad-realm> renew until 09/08/2021 20:44:04