https://community.cloudera.com/t5/Support-Questions/Rebuilding-CM-Host-after-file-system-crash-How-can-I-disable/m-p/294402#M217235 <P><a href="https://community.cloudera.com/t5/user/viewprofilepage/user-id/69863">@Cl0ck</a>&nbsp;You can always use OLD database, this is not am issue. For disabling TLS for admin console from CLI you can use below method.</P><P>&nbsp;</P><PRE>1. Determine Cloudera Manager Database<BR /><BR />cat /etc/cloudera-scm-server/db.properties<BR /><BR />2. Make database backup<BR /><BR />Postgres Backup:<BR />----------------<BR />pg_dump scm &gt; scm_db_.backup<BR /><BR />3. Connect to database<BR /><BR />Postgres Connect:<BR />------------------<BR />psql -U scm -h localhost -p 7432 -d postgres<BR />Password for user scm:<BR />postgres=&gt; \l<BR />postgres=&gt; \c scm<BR /><BR />4. Show TLS related rows <BR />select * from CONFIGS where attr like '%tls%';<BR /><BR />5. Update TLS for web_tls <BR />update CONFIGS set value = 'false' where attr = 'web_tls';</PRE><P>You can generate the key and password as well with same method you did previously. Else please for reference you can use this doc.&nbsp;</P><P><A href="https://docs.cloudera.com/documentation/enterprise/5-14-x/topics/how_to_configure_cm_tls.html" target="_blank">https://docs.cloudera.com/documentation/enterprise/5-14-x/topics/how_to_configure_cm_tls.html</A></P> Tue, 21 Apr 2020 08:29:10 GMT GangWar 2020-04-21T08:29:10Z https://community.cloudera.com/t5/Support-Questions/Rebuilding-CM-Host-after-file-system-crash-How-can-I-disable/m-p/294382#M217226 <P>Had a file system crash, rebuilt Cloudera Manager host with the same everything--except the private TLS key for HTTPS. My psql db is still in tact, so the rebuilt CM host is connecting to it and getting configurations from the previous server. Is this a bad idea? Should I create a new database for the rebuilt CM host, or can I have it connect to the previous db and disable HTTPS manually somehow so I can access the web console and update it from there?<BR /><BR />Would it be a better idea to just regenerate new keys with the same password? I've never done this before, so I am unclear on any potential conflicts if a new Cloudera Manager server connects to an existing Cloudera Manager database.</P> Tue, 21 Apr 2020 00:11:58 GMT https://community.cloudera.com/t5/Support-Questions/Rebuilding-CM-Host-after-file-system-crash-How-can-I-disable/m-p/294382#M217226 Cl0ck 2020-04-21T00:11:58Z https://community.cloudera.com/t5/Support-Questions/Rebuilding-CM-Host-after-file-system-crash-How-can-I-disable/m-p/294402#M217235 <P><a href="https://community.cloudera.com/t5/user/viewprofilepage/user-id/69863">@Cl0ck</a>&nbsp;You can always use OLD database, this is not am issue. For disabling TLS for admin console from CLI you can use below method.</P><P>&nbsp;</P><PRE>1. Determine Cloudera Manager Database<BR /><BR />cat /etc/cloudera-scm-server/db.properties<BR /><BR />2. Make database backup<BR /><BR />Postgres Backup:<BR />----------------<BR />pg_dump scm &gt; scm_db_.backup<BR /><BR />3. Connect to database<BR /><BR />Postgres Connect:<BR />------------------<BR />psql -U scm -h localhost -p 7432 -d postgres<BR />Password for user scm:<BR />postgres=&gt; \l<BR />postgres=&gt; \c scm<BR /><BR />4. Show TLS related rows <BR />select * from CONFIGS where attr like '%tls%';<BR /><BR />5. Update TLS for web_tls <BR />update CONFIGS set value = 'false' where attr = 'web_tls';</PRE><P>You can generate the key and password as well with same method you did previously. Else please for reference you can use this doc.&nbsp;</P><P><A href="https://docs.cloudera.com/documentation/enterprise/5-14-x/topics/how_to_configure_cm_tls.html" target="_blank">https://docs.cloudera.com/documentation/enterprise/5-14-x/topics/how_to_configure_cm_tls.html</A></P> Tue, 21 Apr 2020 08:29:10 GMT https://community.cloudera.com/t5/Support-Questions/Rebuilding-CM-Host-after-file-system-crash-How-can-I-disable/m-p/294402#M217235 GangWar 2020-04-21T08:29:10Z