HPE Ezmeral Data Fabric 6.2 is In Maintenance and transitions to "End of Maintenance" in June 2024. Please see the latest documentation.

About Release 6.2
This site contains documentation for HPE Ezmeral Data Fabric release 6.2 including installation, configuration, administration, and reference content, as well as content for the associated bundled ecosystem components and drivers.
6.2 Installation
This section contains information about installing and upgrading HPE Ezmeral Data Fabric software. It also contains information about how to migrate data and applications from an Apache Hadoop cluster to a HPE Ezmeral Data Fabric cluster.
6.2 Data Fabric
HPE Ezmeral Data Fabric is the industry-leading data platform for AI and analytics that solves enterprise business needs.
6.2 Administration
This section describes how to manage the nodes and services that make up a cluster.
6.2 Development
This section contains information related to application development for Ezmeral ecosystem components and HPE Ezmeral Data Fabric products, including the file system, Database (Key-Value and JSON), and Event Streams.
- Application Development Process
  Before you start developing applications on the HPE Ezmeral Data Fabric platform, consider how you will get the data into the platform, the storage format of the data, the type of processing or modeling that is required, and how the data will be accessed.
- File Store and Apps
  The following sections provide information about accessing the File Store with C and Java applications.
- HPE Ezmeral Data Fabric Database and Apps
  This section contains information about developing client applications for JSON and key-value tables.
- HPE Ezmeral Data Fabric Streams and Apps
  HPE Ezmeral Data Fabric Streams brings integrated publish and subscribe messaging to HPE Ezmeral Data Fabric.
- MapReduce and Apps
  This section contains information associated with developing YARN applications.
- Kubernetes Interfaces for Data Fabric
  This section describes how to leverage the capabilities of the Kubernetes Interfaces for Data Fabric.
- Ecosystem Components
  The following sections provide information about each open-source project that is supported by the HPE Ezmeral Data Fabric.
  - Ezmeral Ecosystem Packs
  - Apache Airflow
    This topic provides an overview of Apache Airflow on HPE Ezmeral Data Fabric.
  - AsyncHBase
  - Cascading
  - Apache Drill
  - Flume
  - Hadoop
  - HBase
  - HBase Client and HPE Ezmeral Data Fabric Database Binary Tables
    - Using the HBase Thrift Gateway
    - Using the HBase REST Gateway
    - HBase REST Gateway and HBase Thrift Gateway Secured By Default to Use SSL
      Starting in EEP 6.0.0, HBase REST and HBase Thrift use SSL by default on secured clusters.
  - HCatalog
  - Hive
  - HttpFS
  - Hue
  - Impala
  - Livy
    Apache Livy is primarily used to provide integration between Hue and Spark.
  - HPE Ezmeral Data Fabric Streams Clients and Tools
    Describes the supported HPE Ezmeral Data Fabric Streams tools and clients.
  - S3 Gateway
    The S3 gateway is a service that provides an S3-compatible interface to expose data in HPE Ezmeral Data Fabric as objects. The S3 gateway manages all inbound S3 API requests to put data into and get data out of cloud storage.
  - Oozie
  - Pig
  - Sentry
  - Apache Spark
  - Sqoop
  - YARN
- Maven and the HPE Ezmeral Data Fabric
  This section discusses topics associated with Maven and the HPE Ezmeral Data Fabric.
- Developer's Reference
  This section contains in-depth information for the developer.
- API Documentation
  HPE Ezmeral Data Fabric supports public APIs for file system, HPE Ezmeral Data Fabric Database, and HPE Ezmeral Data Fabric Streams. These APIs are available for application-development purposes.
Other Docs
This section contains release-independent information, including: Installer documentation, Ecosystem release notes, interoperability matrices, security vulnerabilities, and links to other data-fabric version documentation.
Glossary
Definitions for commonly used terms in MapR Converged Data Platform environments.

Configure Kerberos for HBase Thrift Gateway

About this task

Procedure

Add the following to the hbase-site.xml file for every Thrift gateway:

<property>
    <name>hbase.thrift.keytab.file</name>
    <value>$KEYTAB</value>
</property>
<property>
    <name>hbase.thrift.kerberos.principal</name>
    <value>$USER/_HOST@HADOOP.LOCALDOMAIN</value>
    <!-- This may need to be HTTP/_HOST@<REALM> and _HOST may not work. You may have to put the concrete full hostname. -->
</property>
<property>
   <name>hbase.thrift.security.qop</name>
   <value>auth-conf</value>
</property>
<!-- Add these if you need to configure a different DNS interface from the default -->
<property>
    <name>hbase.thrift.dns.interface</name>
    <value>default</value>
</property>
<property>
    <name>hbase.thrift.dns.nameserver</name>
    <value>default</value>
</property>

Substitute the appropriate credential and keytab for $USER and $KEYTAB respectively.

If you are running HBase Thrift in HTTP mode, you must add additional properties to the hbase-site.xml to enable HTTP connections through Kerberos. This is required if you enabled the following property in the hbase-site.xml:
```
<property>
  <name>hbase.regionserver.thrift.http</name>
  <value>true</value>
</property>
```
Add the following properties to enable HTTP connections through Kerberos:
```
<property>
    <name>hbase.thrift.spnego.principal</name>
    <value>HTTP/_HOST@HADOOP.LOCALDOMAIN</value>
</property>
<property>
    <name>hbase.thrift.spnego.keytab.file</name>
    <value>$KEYTAB</value>
</property>
```
To use HPE Ezmeral Data Fabric Database tables without the full path, add the following property to the core-site.xml file:
```
<property>
    <name>hbase.table.namespace.mappings</name>
    <value>*:/</value>
</property>
```
Add this property ONLY if you are working with HPE Ezmeral Data Fabric Database tables. Working with HBase tables is not possible when this property is present. For more information, see Considerations for Upgrading to HBase 1.1.13. For more information about mapping tables, see Mapping to HBase Table Namespaces.

Results

The Thrift gateway authenticates with HBase using the supplied credential. No authentication is performed by the Thrift gateway itself. All client access via the Thrift gateway uses the Thrift gateway’s credential and has its privilege.