About cjervis

cjervis · ‎12-23-2021

@dturner The top of the CDP Trust Center page mentions the current efforts on CVE-2021-45105 and other Log4j2 issues.

cjervis · ‎12-21-2021

Google translation: I have a docker image and I need to configure LDAP or AD authentication but nothing works, help please error with AD [pool-2-thread-9:] ~ Error while AD authentication (AtlasAuthenticationProvider:122) 622 ERROR - [pool-2-thread-9:] ~ Error during AD authentication (AtlasAuthenticationProvider: 122) org.apache.atlas.web.security.AtlasAuthenticationException: AD authentication failed at org.apache.atlas.web.security.AtlasADAuthenticationProvider .authenticate (AtlasADAuthenticationProvider.java:74) ERROR LDAP ERROR - [pool-2-thread-8:] ~ getLdapBindAuthentication LDAP authentication failed: (AtlasLdapAuthenticationProvider: 137) atlas-test java.lang.NullPointerException

cjervis · ‎12-14-2021

Cloudera is aware of CVE-2021-4104, which affects the Apache Log4j 1.x JMSAppender. This flaw only affects software that is explicitly configured to use the JMSAppender, which is not the default, or when the attacker has write access to the Log4j configuration for adding JMSAppender. Cloudera does not use JMSAppender in its products and it is not used by default in log4j properties. Cloudera customers do not need to take any action to address CVE-2021-4104. If you have further questions, please contact Cloudera Support through our My Cloudera Support portal. Because Cloudera Manager and Ambari allow authenticated users with privileged access to modify cluster configuration to insert custom logging configuration, customers are advised to review the logging configuration for their clusters to ensure that they do not contain references to the JMSAppender. To find these settings, look for the following based on the cluster management tool in use: Cloudera Manager: "{SERVICE_NAME} Logging Advanced Configuration Snippet (Safety Valve)" Ambari: “Advanced{SERVICE_NAME}-log4j”

cjervis · ‎12-14-2021

@ebeb Thank you for sharing. We have forwarded your post to the appropriate team to look into it.

cjervis · ‎12-13-2021

All, please read the Cloudera blog article on this topic: Cloudera Response to CVE-2021-4428

cjervis · ‎12-13-2021

Cloudera platform security teams are actively assessing the impact to our on-premises and cloud products and will provide an impact analysis update to customers as soon as possible.

cjervis · ‎12-01-2021

As a courtesy, we are publishing a quarterly update as a reminder of upcoming End of Support (EOS) dates. Our Knowledge Hub provides material to assist with moving to CDP from operational efforts to application changes. The following products will reach their EOS date by or before January 31, 2022 (as more specifically listed below): Cloudera Streaming Analytics (CSA) 1.1 - January 2022 Cloudera Enterprise Products (CDH) 6.1 - December 2021 Hortonworks Data Platform (HDP) 3.1 December 2021 Hortonworks Data Lifecycle Manager (DLM) 1.3 December 2021 Hortonworks Data Steward Studio (DSS) 1.3 December 2021 Hortonworks Data Analytics Studio (DAS) 1.1 November 2021 1.2 December 2021 Cloudera HDP Search 5.0 - December 2021 Cloudbreak All Versions - December 2021 The following Products will reach their EOS date in the next 12 months: Cloudera Data Science Workbench 1.5 - 1.6 March 2022 1.7 - 1.8 March 2022 1.9 - June 2022 CDP Private Cloud Base 7.0 - November 2022 Hortonworks Data Flow (HDF) 3.4 - March 2022 Cloudera Flow Management for CDH (CDF-CFM) 1.0 - April 2022 Cloudera Edge Management (CDF-CEM) 1.1 - October 2022 1.0 April 2022 Cloudera Streams Processing (CDF-CSP) 1.0 - September 2022 Cloudera Streaming Analytics (CSA) 1.2 - June 2022 Cloudera Enterprise Products (CDH) 6.3 - March 2022 6.2 - March 2022 Hortonworks Data Lifecycle Manager (DLM) 1.5 - July 2022 1.4 - March 2022 Hortonworks Data Steward Studio (DSS) 1.6 - October 2022 1.5 - May 2022 1.4 - March 2022 Hortonworks Streams Messaging Manager 2.0 September 2022 1.2 February 2022 Hortonworks Data Analytics Studio (DAS) 1.3 July 2022 1.4 October 2022 Thank you, Cloudera For the latest update on this issue, customers can see the corresponding Knowledge article: Cloudera Customer Advisory-536: End of Support for Cloudera Products - Quarterly Update

cjervis · ‎11-29-2021

@Rarasinhoo I'm happy to see you resolved your issue. Please mark the appropriate reply as the solution, as it will make it easier for others to find the answer in the future.

cjervis · ‎11-08-2021

@ighack Did you resolved your issue? If so, please mark the appropriate reply as the solution, as it will make it easier for others to find the answer in the future.

cjervis · ‎10-20-2021

Sorry for the late reply. I'm not an expert but have you looked at this solved thread? Extract string nested in JSON value

Online	Offline
Last Visited	‎11-05-2025 09:05 AM

Name	Cy Jervis
Location	Lecanto, Fl
Member Since	‎04-06-2015 02:01 PM
Last Visited	‎11-05-2025 09:05 AM
Posts	2,209
Total Tags	1742
Kudos received	198

Cloudera Community

Re: Partner Developer License Request

Re: Where are Cloudera Blogs?

Re: Apache Nifi: how to ensure record order betwee...

Re: Nifi does not read data from the topic KAFKA o...

Re: Automate the deployment of a model

Re: Yet another log4j2 vulnerability (CVE-2021-451...

Re: Error while AD authentication (AtlasAuthentica...

Cloudera response to CVE-2021-4104

Re: Log4j2 vulnerability - official solution

Re: log4j2 vulnerability (CVE-2021-44228)

Re: CVE-2021-44228 - log4j Arbitrary RCE

[ANNOUNCE] End of Support for Cloudera Products - ...

Re: Jolt Transform Structure

Re: How can I edit Submission Access Control of Im...

Re: Unable to extract a special character nested d...