Support Questions
Find answers, ask questions, and share your expertise
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Advanced Search

Ranger KMS client server communication

Highlighted

Ranger KMS client server communication

Labels:
veronica_bj2004
New Contributor

Created ‎08-16-2018 08:50 PM

Want to understand how to secure the communication between HDFS Name node AND Ranger KMS for HDFS data-at-rest encryption

1) Is hadoop KMS REST API used between the two or something else?

2) Is basic authentication supported with the REST API call and how to configure if supported?

3) Is HTTPs supported and how to configure if supported?

Reply
379 Views
0 Kudos
3 REPLIES 3

Re: Ranger KMS client server communication

falbani
Guru

Created ‎08-17-2018 06:07 PM

@Yi Wang

1. The KMS rest API is used by other clients as well when reading data from hdfs.

2. AFAIK in non secured environment it uses basic auth by default. However you can use kerberos for authentication.

3. SSL documentation steps are here:

https://docs.hortonworks.com/HDPDocuments/HDP2/HDP-2.6.5/bk_security/content/ch04s20s02s04s03.html

HTH

*** If you found this answer addressed your question, please take a moment to login and click the "accept" link on the answer.

Reply
274 Views
0 Kudos
Highlighted

Re: Ranger KMS client server communication

falbani
Guru

Created ‎08-21-2018 11:58 AM

@Yi Wang

Did the above helped answer your questions?

Reply
274 Views
0 Kudos
Highlighted

Re: Ranger KMS client server communication

priyankaajindal
Explorer

Created ‎02-15-2019 08:33 AM

If we want to have secure communication (i.e SSL enabled) b/w HDFS client and KMS,then does it require the whole cluster to be SSL enabled?

Reply
274 Views
0 Kudos
Don't have an account?
Register