Support Questions

Sreeman · ‎07-30-2014

Hello,

I was trying to figure out what exactly happens when we enable SSL and LDAP on Impala cluster and the same integrated with any BI tool (client). I mean, I would like to understand each call flow, after SSL handshake how the data get transfered, basically a sequence diagram and which functions in the source code takes care of this. I hardly found good extent on SSL and LDAP working procedure in the cloudera documentation.

Any one has better links or documents for the same.

Regards

Sreeman

HenryR · ‎08-04-2014

Yes, Impala supports that configuration. You would use --ssl_server_certificate to secure Impala<-> client connections, and --ldap_ca_certificate to secure Impala <-> LDAP connections.

Henry

View solution in original post

HenryR · ‎07-24-2015

Hi -

Not currently, I'm afraid. Authentication and data access go over the same connection.

To change that, Impala's clients would have to connect over another channel after authentication. The client would have to receive during authentication some shared secret token allowing it to prove to the server that it's ok to access data. We don't currently have any plans to implement this.

Best,

Henry

zeeshan.khan · ‎07-30-2015

In that case, can you suggest a way to speed up the SSL communication with Impala ?

Currently we are using Tableau to extract data from Impala. And with SSL activated, the data extraction is at least 30x to 100x slower than before.

Did you see this behavior ? Do you have a remedy for it ?

Thanks in advance.

Cloudera Community

Support Questions

SSL and LDAP architecture with in Impala-Need to study