Hello @Seaport,  Thanks for reaching Cloudera Community.  Unfortunately, there is no option to use Airflow on base cluster.  The only possible way to use it is with Data Services, in this case CDE.  ... View more

Cloudera Support helped me resolved this issue. * The "Bad Health" status displayed in Cloudera Manager was a false-positive monitoring alert. * The Cloudera Manager Service Monitor (SMON) was failing its secure TLS connection handshakes to ZooKeeper due to strict endpoint identification checks introduced in modern Java runtimes (Java 17). Because SMON couldn't pull health metrics, it flagged ZooKeeper as down. * The solution is to configure the JVM argument inside the SMON configuration "Java Configuration Options for Service Monitor (firehose_java_opts)" to bypass the strict certificate hostname checks: `-Djdk.rmi.ssl.client.enableEndpointIdentification=false`.   This cluster is 7.1.9sp1 with 7.13.1 CM. Strangely, another cluster, which has the same cluster version, CM version, and Java version, had no such issue. It was set up six months ago.   Thanks for all the responses.   Best regards, ... View more

The issue was resolved after I checked the "Enable HBase Thrift Http Server" property in HBase configuration. It turned out that the TLS implementation for the thrift server on CDP HBase is done at http layer, not at the Transport layer.  ... View more