主脚本 add_princ-download_keytabs.sh
#! /bin/bash
base_dir=/etc/security/keytabs
counter=1
while read host_name princ k_name user_name;
do
echo "$counter ==>> ${host_name} ${princ} ${k_name} ${user_name}"
[ ! -d ${base_dir}/${host_name} ] && mkdir -p ${base_dir}/${host_name}
kadmin.local -q "addprinc -randkey ${princ}"
kadmin.local -q "ktadd -k ${base_dir}/${host_name}/${k_name} -norandkey ${princ}"
chown -R ${user_name} ${base_dir}/${host_name}/${k_name}
let counter++;
done<keytab_list
配置文件 keytab_list
hadoop-0 nm/hadoop-0 nm.service.keytab yarn
hadoop-0 nn/hadoop-0 nn.service.keytab hdfs
hadoop-0 rm/hadoop-0 rm.service.keytab yarn
hadoop-0 spark-hdp_offline spark.headless.keytab spark
hadoop-0 spark/hadoop-0 spark.service.keytab spark
hadoop-0 spark_atlas spark-atlas.headless.keytab spark
hadoop-0 yarn-ats-hbase/hadoop-0 yarn-ats.hbase-ma