Authenticating ADLS Account

To access data stored in Azure Data Lake Store (ADLS), you must first authenticate your ADLS account using your ADLS credentials.

  1. Obtain the following properties from your Azure application:
    • dfs.adls.oauth2.access.token.provider.type

      ClientCredential, Refresh Tokens, or Client Keys to obtain the authentication type.

    • dfs.adls.oauth2.client.id

      Create an Azure Active Directory application and get your application ID and authentication key.

    • dfs.adls.oauth2.refresh.url

      Navigate to Azure Active Directory and click on Endpoints. Use the OAUTH 2.0 TOKEN ENDPOINT value.

    • dfs.adls.oauth2.credential

      Obtain the access token key value from App Registrations in your Azure account.

  2. Add the properties obtained in step 1 to the core-site.xml file:
    <!--ADL-->
    <property>    
       <name>dfs.adls.oauth2.access.token.provider.type</name>
       <value>ClientCredential</value>
    </property>
    
    <property>            
       <name>dfs.adls.oauth2.client.id</name>
       <value>f377fab9-c0a3-4531-a1c9-77345105</value>        
    </property>
    
    <property>    
       <name>dfs.adls.oauth2.refresh.url</name>
       <value>https://login.microsoftonline.com/25735fb/oauth2/token</value>      
    </property>
    
    <property>    
       <name>dfs.adls.oauth2.credential</name>
       <value>WTkn4xS0ISsqyzo4R6bu/OW2oPyGNMzWRw/d2z2CGiw=</value>
    </property>
  3. Provide your application with file access.
  4. For secure clusters, MapR-SASL (Simple Authentication and Security Layer), and Kerberos, import the required CA certificate.