@uri ben-ari I always use a json validator, I don't know any tool that can that could help but if the value don't match your json wont be accepted and the output will give you hints as to which parameter. Also see Ambari blueprints ... View more

@uri ben-ari, You can generate your new blueprint.json from an existing cluster replacing the {ambari_host} and {Cluster_name} with correct values curl -H "X-Requested-By: ambari" -X GET -u admin:admin http://{ambari_host}:8080/api/v1/clusters/{Cluster_name}\?format\=blueprint > blueprint.json Hope that helps ... View more

@uri ben-ari The .yml file is specific to the OS setup you run in this case the IBM... Ambari blueprint uses the .json using curl. 1- What do you tend to achieve? ... View more

@uri ben-ari The .yml is a configuration file It's basically a human-readable structured data format "YAML stands for "YAML Ain't Markup Language" and it is used extensively in Grav for its configuration files, blueprints, and also in page settings. YAML is to configuration what markdown is to markup." In this case the your configuration file is "myBlueprint.yml" The json file with the -d @updatedBlueprint.json should be in the current directory where you are running the curl command. ... View more

@Aaron Norton What are the host entries in your ambari server /etc/hosts ? Is the LDAP server entry correct ? Please revert ... View more

@steve coyle The problem is with the below param oozie_user_nproc_limit check this document ... View more

@steve coyle Have you checked in limits_conf_dir = /etc/security/limits.d ... View more

@@Smart Data If you intend to run a secure Hadop cluster then there is no way you can avoid Kerberos. Below are the difference between knox and kerberos. The Apache Knox Gateway is a system that provides a single point of authentication and access. It provides the following features: Single REST API Access Point Centralized authentication, authorization and auditing for Hadoop REST/HTTP services LDAP/AD Authentication, Service Authorization and Audit Eliminates SSH edge node risks Hides Network Topology LAYERS OF DEFENSE FOR A HADOOP CLUSTER Perimeter Level Security – Network Security, Apache Knox (gateway) Authentication : Kerberos Authorization OS Security : encryption of data in network and HDFS Apache Knox can also access a Hadoop cluster over HTTP or HTTPS CURRENT FEATURES OF APACHE KNOX Authenticate : by LDAP or Cloud SSO Provider Provides services for HDFS, HCat, HBase, Oozie, Hive, YARN, and Storm HTTP access for Hive over JDBC support is available (ODBC driver Support- In Future) Hope that helps to explain. ... View more

@@Smart Data If you intend to run a secure Hadop cluster then there is no way you can avoid Kerberos. Below are the difference between knox and kerberos. The Apache Knox Gateway is a system that provides a single point of authentication and access. It provides the following features: Single REST API Access Point Centralized authentication, authorization and auditing for Hadoop REST/HTTP services LDAP/AD Authentication, Service Authorization and Audit Eliminates SSH edge node risks Hides Network Topology LAYERS OF DEFENSE FOR A HADOOP CLUSTER Perimeter Level Security – Network Security, Apache Knox (gateway) Authentication : Kerberos Authorization OS Security : encryption of data in network and HDFS Apache Knox can also access a Hadoop cluster over HTTP or HTTPS CURRENT FEATURES OF APACHE KNOX Authenticate : by LDAP or Cloud SSO Provider Provides services for HDFS, HCat, HBase, Oozie, Hive, YARN, and Storm HTTP access for Hive over JDBC support is available (ODBC driver Support- In Future) Hope that helps to explain. ... View more