Cloudera Community

Support Questions

Find answers, ask questions, and share your expertise
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Advanced Search
Solved Go to solution

SSL Certificates validation for hadoop components in HDP

avatar
author-rank nk_11
Explorer

Created on ‎02-28-2020 07:55 AM - last edited on ‎02-28-2020 08:37 AM by Community Manager Community Manager

Hi All,

I would like know regarding how can i verify or validate the SSL certificates expiry for all the hadoop components installed on my HDP cluster. Would really appreciate getting any help on methods to check the SSL certificates. Thanks

1,885 Views
0 Kudos
2 ACCEPTED SOLUTIONS

avatar
author-rank venkatsambath author-rank
Guru

Created ‎02-29-2020 03:57 AM

 

This link http://www.smartjava.org/content/how-analyze-java-ssl-errors/# covers the diagnosis methods to assess issues with Passwords, Incomplete CA Chains, Invalid keys and Certificate expiration

 

For testing truststore this link will be useful https://docs.cloudera.com/documentation/enterprise/6/6.3/topics/cm_sg_tls_troubleshoot.html#concept_...

 

And https://www.shellhacks.com/openssl-check-ssl-certificate-expiration-date/ for determining the expiration date.

View solution in original post

1,861 Views

avatar
author-rank stevenmatison
Super Guru

Created ‎02-29-2020 06:58 AM

Assuming you used the same certs, or even if you user different ones; you should be able to click the lock in any SSL based UIs (Ambari, Ranger, Nifi, yarn, grafana, etc) in your browser.  This will show you all details of the certs including expiration dates.

View solution in original post

1,857 Views
2 REPLIES 2

avatar
author-rank venkatsambath author-rank
Guru

Created ‎02-29-2020 03:57 AM

 

This link http://www.smartjava.org/content/how-analyze-java-ssl-errors/# covers the diagnosis methods to assess issues with Passwords, Incomplete CA Chains, Invalid keys and Certificate expiration

 

For testing truststore this link will be useful https://docs.cloudera.com/documentation/enterprise/6/6.3/topics/cm_sg_tls_troubleshoot.html#concept_...

 

And https://www.shellhacks.com/openssl-check-ssl-certificate-expiration-date/ for determining the expiration date.

1,862 Views

avatar
author-rank stevenmatison
Super Guru

Created ‎02-29-2020 06:58 AM

Assuming you used the same certs, or even if you user different ones; you should be able to click the lock in any SSL based UIs (Ambari, Ranger, Nifi, yarn, grafana, etc) in your browser.  This will show you all details of the certs including expiration dates.

1,858 Views
Announcements
What's New @ Cloudera
Cloudera Data Engineering 1.23: Access Spark from Your Favor...
What's New @ Cloudera
HBase REST server scaling support is Generally Available
What's New @ Cloudera
New CLI option in the update-database command
What's New @ Cloudera
New Action menu item in the Cloudera Operational Database UI
What's New @ Cloudera
Get the list of supported instance types in the Cloudera Ope...
View More Announcements