Support Questions
Find answers, ask questions, and share your expertise
Announcements
Alert: Welcome to the Unified Cloudera Community. Former HCC members be sure to read and learn how to activate your account here.

Ranger KMS support Pre-generated revocation cert

Highlighted

Ranger KMS support Pre-generated revocation cert

Explorer

Does ranger KMS support Pre-generated revocation certs. Is that even required in Ranger KMS

2 REPLIES 2
Highlighted

Re: Ranger KMS support Pre-generated revocation cert

Can you clarify this question? Ranger KMS's primary use case is to manage keys used for HDFS TDE (Transparent Data Encryption). Not sure what you mean by pre-generated revocation certs and I don't think that is a supported use case.

Re: Ranger KMS support Pre-generated revocation cert

Explorer

Hello, 2 use case - if some one hack the key or we lost the key, can we re-generate new key using the same certificates. Second, if some hack the certificate and we have to compromise the certificate , can we re-generate the keys. thanks

Don't have an account?
Coming from Hortonworks? Activate your account here