Support Questions

Find answers, ask questions, and share your expertise
Announcements
Celebrating as our community reaches 100,000 members! Thank you!

Ambari UI is not showing Active/Standby ResourceManager after enabling SSL

avatar
Contributor

I have enabled SSL for HDFS, YARN and MapReduce. After enabling SSL, Ambari UI is not showing Active/Standby status for ResourceManager. For both ResourceManager Ambari UI is showing just ResourceManager.

Why I am not getting Active/Standby status for ResourceManager on Ambari UI?

Please suggest.

Thanks,

Bhushan

1 ACCEPTED SOLUTION

avatar
Master Mentor

@Bhushan Kandalkar

You might be hitting the issue described in the article:

https://community.hortonworks.com/content/supportkb/150303/after-enabling-ssl-for-yarn-and-hdfsthe-n...

.

So please add the respective certificate in the Ambari server Truststore.

View solution in original post

4 REPLIES 4

avatar
Master Mentor

@Bhushan Kandalkar

You might be hitting the issue described in the article:

https://community.hortonworks.com/content/supportkb/150303/after-enabling-ssl-for-yarn-and-hdfsthe-n...

.

So please add the respective certificate in the Ambari server Truststore.

avatar
Contributor

@Jay Kumar SenSharma,

I have followed steps mentioned in: https://community.hortonworks.com/content/supportkb/150303/after-enabling-ssl-for-yarn-and-hdfsthe-n...

But I am getting following error while importing the certificate into Ambari server Truststore:

[root@bhushan-kandalkar-87127-1 certs]# keytool -import -file hdfs.cert -keystore /etc/ambari-server/bhushan-kandalkar-87127-1.novalocal.jks

Enter keystore password:

keytool error: java.io.IOException: Keystore was tampered with, or password was incorrect

[root@bhushan-kandalkar-87127-1 certs]#

Please suggest.

Thanks,

Bhushan

avatar
Master Mentor

@Bhushan Kandalkar

You are getting error as following:

keytool error: java.io.IOException: Keystore was tampered with, or password was incorrect<br>

Above error indicates that you might be entering an incorrect store password of your JKS keystore (Or the keystore is corrupted).

So if you want to verify if your Keystore is good and your password is correct or not, Please try to list the keystore using the same keystore password which is failing for you:

# keytool -list -v -keystore  /etc/ambari-server/bhushan-kandalkar-87127-1.novalocal.jks 

.

If you get the same error even while listing the keystores default certificates then it means either you are entering the password incorrectly Or bhushan-kandalkar-87127-1.novalocal.jks file is tempered.

avatar
Contributor

Thanks @Jay Kumar SenSharma. It worked.