Hi @Bhushan Kandalkar,
How to add new nodes in SSL enabled cluster without restarting services of cluster?
Via hosts menu in Ambari you can add your new hosts.
How new truststores are reflected after adding new node?
If you are using host based ssl's then you should add all public certs of each host to the truststore. If you are using wildcard based certs then you just need to create the new truststore with the wildcards in your new hosts.
Do we need to manually copy truststore file on all nodes of cluster?
You should have the truststore in all hosts so that the hosts can trust each others in the comms.
Is there any provision in Ambari by which it will automatically take modified truststore?
In each service you usually will find a SSL location path, this path will be your JKS path. If you don't change the JKS name and path then it will be always picked up automatically.
Hope it helps!
Gonçalo
