Cloudera Community

Support Questions

Find answers, ask questions, and share your expertise
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Advanced Search

SSL for cloudera manager

avatar
author-rank JobBranwl
Explorer

Created ‎09-13-2023 10:44 PM

Hello,

I'm setting up new cluster for educational purposes and configuring SSL using case 2 "Enabling Auto-TLS with an intermediate CA signed by an existing Root CA ", I just installed cloudera manager and enabled the kerbros using Free IPA & created the certificates using JAVA_HOME=/usr/lib/jvm/java-1.8.0-openjdk /opt/cloudera/cm-agent/bin/certmanager setup --configure-services --stop-at-csr. But when I sign the csr from the IPA server I got the attached error,, Any help please

Note: I'm using the user that automatically created by cloudera manager when setting the kerbros as principle, for more info >>  Step 3: Create the Kerberos Principal for Cloudera Manager Server | CDP Private Cloud

Screenshot 2023-09-14 084046.png

629 Views
0 Kudos
1 REPLY 1

avatar
author-rank Rajat_710 author-rank
Super Collaborator

Created ‎04-21-2024 11:38 PM

hi, @JobBranwl not sure how free IPA works, but it looks like whichever user you are using to generate this cart does not match the certificate CommanName i.e., CN. You might need to check on that part.

365 Views
0 Kudos
Announcements
What's New @ Cloudera
Cloudera DataFlow 2.9 now supports building GenAI pipelines ...
What's New @ Cloudera
Accelerate Data Scientist Productivity with Cloudera Copilot...
What's New @ Cloudera
[RELEASED] Cloudera Streaming Analytics - Kubernetes Operato...
Community Announcements
October 2024 Community Highlights
What's New @ Cloudera
Accelerate Your AI with the Cloudera AI Inference Service wi...
View More Announcements