how can use kerberos secure solr admin panel on standalone (non- solr-cloud) configuration? i've tried using https://cwiki.apache.org/confluence/display/solr/kerberos+authentication+plugin don't understand how set authentication without zookeeper/security.json.
as specified in same wiki page link to, can specify want use kerberos plugin java system property on node start up.
for example, in solr.in.sh, can add solr_authentication_opts="-dauthenticationplugin=org.apache.solr.security.kerberosplugin". you'll need jaas config file additional properties well, can see these specified in "define jaas configuration file" , "solr startup parameters" sections on same page.
note: solr.kerberos.principal specify must spnego spn (i.e. http/solr.example.com@example.com) full qualified domain name of host solr node located on.
this different service principal use internode communication register in jaas config file (something solr/solr.example.com@example.com).
Comments
Post a Comment