aws-cdk-lib.aws_emr.CfnCluster.KerberosAttributesProperty

interface KerberosAttributesProperty

LanguageType name
.NETAmazon.CDK.AWS.EMR.CfnCluster.KerberosAttributesProperty
Gogithub.com/aws/aws-cdk-go/awscdk/v2/awsemr#CfnCluster_KerberosAttributesProperty
Javasoftware.amazon.awscdk.services.emr.CfnCluster.KerberosAttributesProperty
Pythonaws_cdk.aws_emr.CfnCluster.KerberosAttributesProperty
TypeScript aws-cdk-lib » aws_emr » CfnCluster » KerberosAttributesProperty

KerberosAttributes is a property of the AWS::EMR::Cluster resource.

KerberosAttributes define the cluster-specific Kerberos configuration when Kerberos authentication is enabled using a security configuration. The cluster-specific configuration must be compatible with the security configuration. For more information see Use Kerberos Authentication in the EMR Management Guide .

Example

// The code below shows an example of how to instantiate this type.
// The values are placeholders you should change.
import { aws_emr as emr } from 'aws-cdk-lib';
const kerberosAttributesProperty: emr.CfnCluster.KerberosAttributesProperty = {
  kdcAdminPassword: 'kdcAdminPassword',
  realm: 'realm',

  // the properties below are optional
  adDomainJoinPassword: 'adDomainJoinPassword',
  adDomainJoinUser: 'adDomainJoinUser',
  crossRealmTrustPrincipalPassword: 'crossRealmTrustPrincipalPassword',
};

Properties

NameTypeDescription
kdcAdminPasswordstringThe password used within the cluster for the kadmin service on the cluster-dedicated KDC, which maintains Kerberos principals, password policies, and keytabs for the cluster.
realmstringThe name of the Kerberos realm to which all nodes in a cluster belong.
adDomainJoinPassword?stringThe Active Directory password for ADDomainJoinUser .
adDomainJoinUser?stringRequired only when establishing a cross-realm trust with an Active Directory domain.
crossRealmTrustPrincipalPassword?stringRequired only when establishing a cross-realm trust with a KDC in a different realm.

kdcAdminPassword

Type: string

The password used within the cluster for the kadmin service on the cluster-dedicated KDC, which maintains Kerberos principals, password policies, and keytabs for the cluster.


realm

Type: string

The name of the Kerberos realm to which all nodes in a cluster belong.

For example, EC2.INTERNAL .


adDomainJoinPassword?

Type: string (optional)

The Active Directory password for ADDomainJoinUser .


adDomainJoinUser?

Type: string (optional)

Required only when establishing a cross-realm trust with an Active Directory domain.

A user with sufficient privileges to join resources to the domain.


crossRealmTrustPrincipalPassword?

Type: string (optional)

Required only when establishing a cross-realm trust with a KDC in a different realm.

The cross-realm principal password, which must be identical across realms.