Support Questions
Find answers, ask questions, and share your expertise

How to implement BDR with kerberos and tls enabled cluster

Solved Go to solution

How to implement BDR with kerberos and tls enabled cluster

Explorer

Hi,

I am running cdh 5.14.0 cluster version both on Prod and DR cluster. Both cluster are Kerberos and TLS enabled with the same kdc server.

Could anyone guide me on how to do BDR between Kerberos enabled clusters. As I was not able to find any proper guide on the Cloudera website.

 

Please help me or provide any docs related to this.

Appreciate your help.

 

Thanks 

pdev

1 ACCEPTED SOLUTION

Accepted Solutions

Re: How to implement BDR with kerberos and tls enabled cluster

Expert Contributor

@pdev 

 

Please refer document [1] for details on how to enable replication between cluster with kerberos configuration.

To configure encryption of data transmission between source and destination clusters:

  • Enable TLS/SSL for HDFS clients on both the source and the destination clusters.  You may also need to configure trust between the SSL certificates on the source and destination. The certificates of the source cluster should be trusted by your destination cluster.
  • Enable TLS/SSL for the two peer Cloudera Manager Servers. 

Refer link [2] for more details.

 

[1]

https://docs.cloudera.com/documentation/enterprise/5-14-x/topics/cm_bdr_replication_and_kerberos.htm...

 

[2]

https://docs.cloudera.com/documentation/enterprise/5-14-x/topics/cm_bdr_replication_and_encryption.h...

 

Hope this helps,
Paras
Was your question answered? Make sure to mark the answer as the accepted solution.
If you find a reply useful, say thanks by clicking on the thumbs up button.

View solution in original post

4 REPLIES 4

Re: How to implement BDR with kerberos and tls enabled cluster

Expert Contributor

@pdev 

 

Please refer document [1] for details on how to enable replication between cluster with kerberos configuration.

To configure encryption of data transmission between source and destination clusters:

  • Enable TLS/SSL for HDFS clients on both the source and the destination clusters.  You may also need to configure trust between the SSL certificates on the source and destination. The certificates of the source cluster should be trusted by your destination cluster.
  • Enable TLS/SSL for the two peer Cloudera Manager Servers. 

Refer link [2] for more details.

 

[1]

https://docs.cloudera.com/documentation/enterprise/5-14-x/topics/cm_bdr_replication_and_kerberos.htm...

 

[2]

https://docs.cloudera.com/documentation/enterprise/5-14-x/topics/cm_bdr_replication_and_encryption.h...

 

Hope this helps,
Paras
Was your question answered? Make sure to mark the answer as the accepted solution.
If you find a reply useful, say thanks by clicking on the thumbs up button.

View solution in original post

Re: How to implement BDR with kerberos and tls enabled cluster

Explorer

Thanks, Paras

will try and let you know. One more question, do BDR works between two different CDH versions?

like 5.14 and 5.16 ?

pdev

Re: How to implement BDR with kerberos and tls enabled cluster

Expert Contributor

@pdev 

 

Yes, BDR  is supported between different CDH versions.

 

Refer below links for more details

https://docs.cloudera.com/documentation/enterprise/5-14-x/topics/cm_bdr_replication_intro.html#conce...

 

https://docs.cloudera.com/documentation/enterprise/6/release-notes/topics/rg_pcm_bdr.html#bdr

 

Hope this helps,
Paras
Was your question answered? Make sure to mark the answer as the accepted solution.
If you find a reply useful, say thanks by clicking on the thumbs up button.

Re: How to implement BDR with kerberos and tls enabled cluster

Explorer

Thanks a lot, Paras.

 

pdev