Yes, an additional benefit of using Hadoop proprietary "delegation tokens"
for delegation as described in HADOOP-4343, as opposed to using Kerberos
TGT/Service tickets, is that Kerberos is only used at the "edge" of Hadoop.
Delegation tokens don't depend on Kerberos and can be coupled with
non-Kerberos authentication mechanisms (such as SSL) used at the edge.

Kan
On 3/24/09 4:37 PM, "Brian Bockelman" <[EMAIL PROTECTED]> wrote:
NEW: Monitor These Apps!
elasticsearch, apache solr, apache hbase, hadoop, redis, casssandra, amazon cloudwatch, mysql, memcached, apache kafka, apache zookeeper, apache storm, ubuntu, centOS, red hat, debian, puppet labs, java, senseiDB