Updated on 2022-08-12 GMT+08:00

Changing the Password for the OMS Kerberos Administrator

Scenario

Periodically change the password for the OMS Kerberos administrator kadmin to improve the system O&M security.

If the user password is changed, the Kerberos administrator password is changed as well.

Procedure

  1. Log in to the management node using the management IP address as user omm.
  2. Run the following command to go to the related directory:

    cd ${BIGDATA_HOME}/om-server/om/meta-0.0.1-SNAPSHOT/kerberos/scripts

  3. Run the following command to configure environment variables:

    source component_env

  4. Run the following command to change the password for kadmin/admin. The password changing takes effect on all servers.

    kpasswd kadmin/admin

    The password complexity requirements are as follows by default:

    • The password contains at least 8 characters.
    • The password must contain at least four types of the following: lowercase letters, uppercase letters, digits, and special characters which can only be ~`!?,.;-_'(){}[]/<>@#$%^&*+|\=.
    • The password cannot be the same as the username or reverse username.
    • The password cannot be a common password that is easy to crack, for example, Admin@12345.
    • The password cannot be the same as the password that used in latest N times. N indicates the value of Repetition Rule in Configuring Password Policies.