Support Questions
Find answers, ask questions, and share your expertise
Alert: The Cloudera Community will undergo maintenance on Saturday, August 17 at 12:00am PDT. See more info here.

Who Agreed with this topic

No KeyVersion exists for key 'testTLS1'

Expert Contributor

I am able to sucessfully put a file in a non-encrypted zone. 


when i try to put a file to an encrypted zone i see this error. The file however is copied to the encrypted zone. 


desind@xxxx:~#> hdfs dfs -put users.txt /ccnd/test

18/02/01 06:54:19 WARN kms.LoadBalancingKMSClientProvider: KMS provider at [] threw an IOException [Key retrieval failed.]!!


Caused by: java.lang.NullPointerException: No KeyVersion exists for key 'testTLS1'
at org.apache.hadoop.crypto.key.KeyProviderCryptoExtension$DefaultCryptoExtension.generateEncryptedKey(
at org.apache.hadoop.crypto.key.KeyProviderCryptoExtension.generateEncryptedKey(
at org.apache.hadoop.crypto.key.kms.server.EagerKeyGeneratorKeyProviderCryptoExtension$CryptoExtension$EncryptedQueueRefiller.fillQueueForKey(EagerKeyGen
at org.apache.hadoop.crypto.key.kms.ValueQueue$1.load(
at org.apache.hadoop.crypto.key.kms.ValueQueue$1.load(
... 54 more
2018-02-02 09:52:50,353 WARN org.apache.hadoop.crypto.key.kms.server.KMS: User hdfs/ (auth:KERBEROS) request GET caused exception.



Can someone advise where to check ? 

We have kerberos and SSL enabled in the cluster. 

Who Agreed with this topic