Adding a bit of clarification to above mentioned solution. Find "Ranger External URL" in the field  Ranger > Configs > Advanced > Ranger Settings. It will be something like "http://<ranger_admin_host>:6080" . Copy this URL and update the particular service to which Ranger plugin is enabled. For example : If its HDFS, HDFS > Configs > Advanced > Advanced ranger-hdfs-security >  ranger. plugin. hdfs. policy. rest. url. Usually this field should be auto populated by Ranger External URL value. If its not, it will be like "{{policy_mgr_url}}" . Update this field by adding "Ranger External URL". Restart Ranger service, ranger KMS service and all required services.  ... View more

Which Operating system you are using? Which version of HDP and Ambari? ... View more

@Jay Kumar SenSharma Hi Jay, Its seems Standby Namenode is not in sync with Primay namenode. Can I run this command, from secondary namenode. hdfs namenode -bootstrapStandby -force Can you kindly tell me what impact it will cause? ... View more

@Jay Kumar SenSharma Hi Jay, Now I have two entries. But no luck, the issue persists. Is this related to permssion being revoked from writable container in AD? [root@node1] # keytool -list -keystore ambari-server-truststore Enter keystore password: Keystore type: JKS Keystore provider: SUN Your keystore contains 2 entries ambari-server, Nov 6, 2017, trustedCertEntry, Certificate fingerprint (SHA1): 35:E6:CC:35:1E:5B:82:68:83:4B:0C:EB:C2:A7:B1:58:FE:F9:29:8D kdc-server, Nov 6, 2017, trustedCertEntry, Certificate fingerprint (SHA1): 12:58:59:3C:1C:68:14:61:CE:9A:CA:32:54:A6:B8:02:D0:A4:0F:25 ... View more