interface KerberosAttributesProperty
| Language | Type name |
|---|---|
 .NET | Amazon.CDK.AWS.StepFunctions.Tasks.EmrCreateCluster.KerberosAttributesProperty |
 Java | software.amazon.awscdk.services.stepfunctions.tasks.EmrCreateCluster.KerberosAttributesProperty |
 Python | aws_cdk.aws_stepfunctions_tasks.EmrCreateCluster.KerberosAttributesProperty |
 TypeScript (source) | @aws-cdk/aws-stepfunctions-tasks » EmrCreateCluster » KerberosAttributesProperty |
Attributes for Kerberos configuration when Kerberos authentication is enabled using a security configuration.
See the RunJobFlow API for complete documentation on input parameters
See also: https://docs.aws.amazon.com/emr/latest/APIReference/API_KerberosAttributes.html
Example
// The code below shows an example of how to instantiate this type.
// The values are placeholders you should change.
import * as stepfunctions_tasks from '@aws-cdk/aws-stepfunctions-tasks';
const kerberosAttributesProperty: stepfunctions_tasks.EmrCreateCluster.KerberosAttributesProperty = {
realm: 'realm',
// the properties below are optional
adDomainJoinPassword: 'adDomainJoinPassword',
adDomainJoinUser: 'adDomainJoinUser',
crossRealmTrustPrincipalPassword: 'crossRealmTrustPrincipalPassword',
kdcAdminPassword: 'kdcAdminPassword',
};
Properties
| Name | Type | Description |
|---|---|---|
| realm | string | The name of the Kerberos realm to which all nodes in a cluster belong. |
| ad | string | The Active Directory password for ADDomainJoinUser. |
| ad | string | Required only when establishing a cross-realm trust with an Active Directory domain. |
| cross | string | Required only when establishing a cross-realm trust with a KDC in a different realm. |
| kdc | string | The password used within the cluster for the kadmin service on the cluster-dedicated KDC, which maintains Kerberos principals, password policies, and keytabs for the cluster. |
realm
Type:
string
The name of the Kerberos realm to which all nodes in a cluster belong.
For example, EC2.INTERNAL.
adDomainJoinPassword?
Type:
string
(optional, default: No adDomainJoinPassword)
The Active Directory password for ADDomainJoinUser.
adDomainJoinUser?
Type:
string
(optional, default: No adDomainJoinUser)
Required only when establishing a cross-realm trust with an Active Directory domain.
A user with sufficient privileges to join resources to the domain.
crossRealmTrustPrincipalPassword?
Type:
string
(optional, default: No crossRealmTrustPrincipalPassword)
Required only when establishing a cross-realm trust with a KDC in a different realm.
The cross-realm principal password, which must be identical across realms.
kdcAdminPassword?
Type:
string
(optional, default: No kdcAdminPassword)
The password used within the cluster for the kadmin service on the cluster-dedicated KDC, which maintains Kerberos principals, password policies, and keytabs for the cluster.