Support Questions

ArtG001 · ‎02-09-2023

I followed https://docs.cloudera.com/cdp-private-cloud-base/7.1.8/securing-hive/topics/hive-enable-tls.html to configure Hive Kerberos with SSL. There was no issue, however , when I tried to obtain/display certs on client side to be used in connection, I obtained the following:

openssl s_client -connect my_host:10000 -showcerts

CONNECTED(00000005)

read:errno=0

---

no peer certificate available

---

No client certificate CA names sent

---

SSL handshake has read 0 bytes and written 287 bytes

---

New, (NONE), Cipher is (NONE)

Secure Renegotiation IS NOT supported

Compression: NONE

Expansion: NONE

No ALPN negotiated

SSL-Session:

Protocol : TLSv1.3

Cipher : 0000

Session-ID:

Session-ID-ctx:

Master-Key:

Start Time: 1675956752

Timeout : 7200 (sec)

Verify return code: 0 (ok)

smruti · ‎02-28-2023

@ArtG001 Have you enabled SSL/TLS for Hiveserver2 as per the doc you have shared above, else we should see a valid result here? Do confirm.

I tried the openssl command on a non SSL Hive endpoint and I got similar response.

Hive Kerberos with SSL - how to configure