Member since
08-08-2017
43
Posts
1
Kudos Received
0
Solutions
02-26-2018
08:27 AM
Hi @Deepak Sharma did you have any advice regarding this issue?
... View more
01-09-2018
06:47 AM
HDP: 2.6.2.14-5 I used the default admin account - verified that it is still an admin with the correct priveleges
... View more
01-08-2018
08:08 AM
I have followed this guide to enable Knox for the Ambari cluster: https://community.hortonworks.com/articles/78361/configure-knox-to-access-ambari-ui.html While I am able to log into the Ambari UI via Knox. I cannot view the hosts nor am I able to access the preconfigured 'Views': - Hive View - Files View - Smartsense View - Tez View etc.. I have also noticed that alerts and warnings do not show either. Why am I a limited user despite logging in with an admin account? Thanks in advance
... View more
Labels:
- Labels:
-
Apache Ambari
-
Apache Knox
09-04-2017
09:17 AM
@Vipin Rathor Turns out you need to explicitly force it in the /etc/amabri-agent/conf/ambari-agent.ini file. Example: [security] force_https_protocol=PROTOCOL_TLSv1_2 https://community.hortonworks.com/questions/114808/ambari-agents-cannot-reach-ambari-server-after-cha.html
... View more
09-04-2017
02:43 AM
Hi @Vipin Rathor I can confirm that Ambari Server is starting with Java Oracle: - Java(TM) SE Runtime Environment (build 1.8.0_131-b11) - Java HotSpot(TM) 64-Bit Server VM (build 25.131-b11, mixed mode)
Ambari agent on the other hand is using Python 2.7.X. My OS is RHEL7, considering it is very similar to Centos 7..Hortonworks recommends v2.7 https://docs.hortonworks.com/HDPDocuments/Ambari-2.2.1.1/bk_Installing_HDP_AMB/content/_software_requirements.html So should I downgrade or is the problem elsewhere? Kind regards,
... View more
08-29-2017
09:27 AM
Hi @Vipin Rathor I looked up the bug as suggested below, although it's restricted for internal development. For the record I have the following version of OpenSSL installed: 1.0.1e-fips INFO 2017-08-29 17:09:51,722 security.py:93 - SSL Connect being called.. connecting to the server
ERROR 2017-08-29 17:09:51,725 Controller.py:456 - Unable to reconnect to https://xxx.xxx.xxx.xxx:8441/agent/v1/heartbeat/xxx.xxx.xxx.xxx (attempts=6, details=Request to https://xxx.xxx.xxx.xxx:8441/agent/v1/heartbeat/xxx.xxx.xxx.xxx failed due to EOF occurred in violation of protocol (_ssl.c:579))
INFO 2017-08-29 17:10:13,747 Controller.py:471 - Waiting 0.9 for next heartbeat
INFO 2017-08-29 17:10:14,648 Controller.py:478 - Wait for next heartbeat over
INFO 2017-08-29 17:10:14,651 NetUtil.py:70 - Connecting to https://xxx.xxx.xxx.xxx:8440/connection_info
ERROR 2017-08-29 17:10:14,657 NetUtil.py:96 - EOF occurred in violation of protocol (_ssl.c:579)
ERROR 2017-08-29 17:10:14,657 NetUtil.py:97 - SSLError: Failed to connect. Please check openssl library versions.
Refer to: https://bugzilla.redhat.com/show_bug.cgi?id=1022468 for more details.
... View more
08-29-2017
01:52 AM
Hi @Vipin Rathor, I got the following result: CONNECTED(00000003)
verify error:num=21:unable to verify the first certificate
verify return:1
---
No client certificate CA names sent
Peer signing digest: SHA512
Server Temp Key: ECDH, P-256, 256 bits
---
SSL handshake has read 2518 bytes and written 433 bytes
---
New, TLSv1/SSLv3, Cipher is ECDHE-RSA-AES256-GCM-SHA384
Server public key is 2048 bit
Secure Renegotiation IS supported
Compression: NONE
Expansion: NONE
No ALPN negotiated
... View more
08-28-2017
06:29 AM
Hi @Vipin Rathor Apologies for the delay, I had a look at the two above links regarding the patches. Is there a special procedure to apply those patches or am I supposed to manually edit the source code? If that is the case I was unable to find the '/AmbariServer.java' file. Kind regards, LV
... View more
08-24-2017
05:45 AM
Hi @Vipin Rathor, Apologies, I should have mentioned that I am using version 2.5.x Kind regards,
... View more
08-24-2017
04:13 AM
1 Kudo
Hi guys, A few cipher suites have been flagged as vulnerabilities, I have proceeded to disable them in the ambari.properties config file although the result is a cluster with cut communications. I have found this link where a member mentions he edited the source code and it was successful. https://community.hortonworks.com/questions/6093/ambari-server-210-how-to-enable-tlsv12-for-the-por.html I need to disable TLSv1 and TLS1.1 and ENABLE TLSv1.2 Am I able to edit the source code after the software has been installed or does this need to be done before the install? Also..I can't seem to locate where any of the source code for Ambari is..If someone could point me in the right direction ti would be greatly appreciated.
... View more
Labels:
- Labels:
-
Apache Ambari
- « Previous
-
- 1
- 2
- Next »