Support Questions

Find answers, ask questions, and share your expertise

How to implement BDR with kerberos and tls enabled cluster

avatar
Explorer

Hi,

I am running cdh 5.14.0 cluster version both on Prod and DR cluster. Both cluster are Kerberos and TLS enabled with the same kdc server.

Could anyone guide me on how to do BDR between Kerberos enabled clusters. As I was not able to find any proper guide on the Cloudera website.

 

Please help me or provide any docs related to this.

Appreciate your help.

 

Thanks 

pdev

1 ACCEPTED SOLUTION

avatar
Master Collaborator

@pdev 

 

Please refer document [1] for details on how to enable replication between cluster with kerberos configuration.

To configure encryption of data transmission between source and destination clusters:

  • Enable TLS/SSL for HDFS clients on both the source and the destination clusters.  You may also need to configure trust between the SSL certificates on the source and destination. The certificates of the source cluster should be trusted by your destination cluster.
  • Enable TLS/SSL for the two peer Cloudera Manager Servers. 

Refer link [2] for more details.

 

[1]

https://docs.cloudera.com/documentation/enterprise/5-14-x/topics/cm_bdr_replication_and_kerberos.htm...

 

[2]

https://docs.cloudera.com/documentation/enterprise/5-14-x/topics/cm_bdr_replication_and_encryption.h...

 

Hope this helps,
Paras
Was your question answered? Make sure to mark the answer as the accepted solution.
If you find a reply useful, say thanks by clicking on the thumbs up button.

View solution in original post

4 REPLIES 4

avatar
Master Collaborator

@pdev 

 

Please refer document [1] for details on how to enable replication between cluster with kerberos configuration.

To configure encryption of data transmission between source and destination clusters:

  • Enable TLS/SSL for HDFS clients on both the source and the destination clusters.  You may also need to configure trust between the SSL certificates on the source and destination. The certificates of the source cluster should be trusted by your destination cluster.
  • Enable TLS/SSL for the two peer Cloudera Manager Servers. 

Refer link [2] for more details.

 

[1]

https://docs.cloudera.com/documentation/enterprise/5-14-x/topics/cm_bdr_replication_and_kerberos.htm...

 

[2]

https://docs.cloudera.com/documentation/enterprise/5-14-x/topics/cm_bdr_replication_and_encryption.h...

 

Hope this helps,
Paras
Was your question answered? Make sure to mark the answer as the accepted solution.
If you find a reply useful, say thanks by clicking on the thumbs up button.

avatar
Explorer

Thanks, Paras

will try and let you know. One more question, do BDR works between two different CDH versions?

like 5.14 and 5.16 ?

pdev

avatar
Master Collaborator

@pdev 

 

Yes, BDR  is supported between different CDH versions.

 

Refer below links for more details

https://docs.cloudera.com/documentation/enterprise/5-14-x/topics/cm_bdr_replication_intro.html#conce...

 

https://docs.cloudera.com/documentation/enterprise/6/release-notes/topics/rg_pcm_bdr.html#bdr

 

Hope this helps,
Paras
Was your question answered? Make sure to mark the answer as the accepted solution.
If you find a reply useful, say thanks by clicking on the thumbs up button.

avatar
Explorer

Thanks a lot, Paras.

 

pdev