Support Questions
Find answers, ask questions, and share your expertise
Announcements
Alert: Welcome to the Unified Cloudera Community. Former HCC members be sure to read and learn how to activate your account here.

SSL Certificates validation for hadoop components in HDP

Solved Go to solution

SSL Certificates validation for hadoop components in HDP

Explorer

Hi All,

I would like know regarding how can i verify or validate the SSL certificates expiry for all the hadoop components installed on my HDP cluster. Would really appreciate getting any help on methods to check the SSL certificates. Thanks

2 ACCEPTED SOLUTIONS

Accepted Solutions
Highlighted

Re: SSL Certificates validation for hadoop components in HDP

Expert Contributor

 

This link http://www.smartjava.org/content/how-analyze-java-ssl-errors/# covers the diagnosis methods to assess issues with Passwords, Incomplete CA Chains, Invalid keys and Certificate expiration

 

For testing truststore this link will be useful https://docs.cloudera.com/documentation/enterprise/6/6.3/topics/cm_sg_tls_troubleshoot.html#concept_...

 

And https://www.shellhacks.com/openssl-check-ssl-certificate-expiration-date/ for determining the expiration date.

View solution in original post

Highlighted

Re: SSL Certificates validation for hadoop components in HDP

Master Collaborator

Assuming you used the same certs, or even if you user different ones; you should be able to click the lock in any SSL based UIs (Ambari, Ranger, Nifi, yarn, grafana, etc) in your browser.  This will show you all details of the certs including expiration dates.

 


 


If this answer resolves your issue or allows you to move forward, please choose to ACCEPT this solution and close this topic. If you have further dialogue on this topic please comment here or feel free to private message me. If you have new questions related to your Use Case please create separate topic and feel free to tag me in your post.  


 


Thanks,



Steven @ DFHZ

View solution in original post

2 REPLIES 2
Highlighted

Re: SSL Certificates validation for hadoop components in HDP

Expert Contributor

 

This link http://www.smartjava.org/content/how-analyze-java-ssl-errors/# covers the diagnosis methods to assess issues with Passwords, Incomplete CA Chains, Invalid keys and Certificate expiration

 

For testing truststore this link will be useful https://docs.cloudera.com/documentation/enterprise/6/6.3/topics/cm_sg_tls_troubleshoot.html#concept_...

 

And https://www.shellhacks.com/openssl-check-ssl-certificate-expiration-date/ for determining the expiration date.

View solution in original post

Highlighted

Re: SSL Certificates validation for hadoop components in HDP

Master Collaborator

Assuming you used the same certs, or even if you user different ones; you should be able to click the lock in any SSL based UIs (Ambari, Ranger, Nifi, yarn, grafana, etc) in your browser.  This will show you all details of the certs including expiration dates.

 


 


If this answer resolves your issue or allows you to move forward, please choose to ACCEPT this solution and close this topic. If you have further dialogue on this topic please comment here or feel free to private message me. If you have new questions related to your Use Case please create separate topic and feel free to tag me in your post.  


 


Thanks,



Steven @ DFHZ

View solution in original post

Don't have an account?
Coming from Hortonworks? Activate your account here