3. Enable SSL on HDP Components
The following table links to step-by-step instructions to enable SSL in the HDP
environment:
Table 3.1. Configure Data Protection for HDP Components
| HDP Component | Notes/Link |
|---|
| Hadoop
| Section 1, “Enable RPC Encryption for the Hadoop Cluster”
Section 3.3, “Enable SSL for WebHDFS, MapReduce Shuffle, and YARN” |
| HBase | Section 3.5, “Enable SSL on WebHBase and the HBase REST
API” |
| Ambari Server | Ambari Security Guide, Advanced Security Options, Optional: Set
Up Security for Ambari
|
| Oozie | Section 3.4, “Enable SSL on Oozie” |
| Falcon | Enabled by default, to disable see FALCON-229 |
| Sqoop | Client of Hive and HBase, see Data Integration Services with HDP, Apache Sqoop
Connectors |
| Knox Gateway | Apache Knox Gateway Adminsitrator Guide, Gateway Security,
Configure Wire Encryption
|
| Flume | Apache Flume User Guide, Defining Sources |
| Accumulo |
Apache Foundation Blog, Apache Accumulo: Generating Keystores
for configuring Accumulo with SSL |
| Phoenix | Installing HDP Manually, Installing Phoenix: Configuring
Phoenix for Security and Apache
Phoenix, Flume Plug-in |
| Hive (HiveServer2) | Section 3.6, “Enable SSL on HiveServer2” |
| YARN | Section 3.3, “Enable SSL for WebHDFS, MapReduce Shuffle, and YARN” |
| HUE | Installing HDP Manually, Installing Hue, (Optional.) Configure
Hue for SSL |
| Ganglia | Ambari Security Guide, Advanced Security Options, Optional: Set
Up Security for Ambari |
| Nagios | Ambari Security Guide, Advanced Security Options, Optional: Set
Up Security for Ambari |
This section contains the following topics:
