Support Questions
Find answers, ask questions, and share your expertise
Announcements
Alert: Welcome to the Unified Cloudera Community. Former HCC members be sure to read and learn how to activate your account here.

Activating AUTO-TLS in CDH 6.3 on existing cluster with certificates signed by customer CA

Activating AUTO-TLS in CDH 6.3 on existing cluster with certificates signed by customer CA

Is there a more detailed description how to activate AUTO-TLS with customer certificates on an existing cluster? In the documentation (https://docs.cloudera.com/documentation/enterprise/latest/topics/auto_tls.html#auto-tls-existing-cer...) the only thing I can find is:

 

The Cloudera Manage web UI supports auto-TLS on existing deployments using certificates created and managed only by an internal Cloudera Manager Certificate Authority (CMCA). If you want to enable auto-TLS on existing deployments using a custom CA, you must use the following Cloudera Manager API commands: /cm/commands/addCustomCerts, /cm/commands/generateCmca, and /clusters/{clusterName}/commands/configureAutoTlsServices.

 

I've looked at these API calls, but documentation is also very poor on those.

 

Any help appreciated!

Don't have an account?
Coming from Hortonworks? Activate your account here