Apache Zeppelin Component Guide
Also available as:
PDF

Configure SSL for Zeppelin

To configure the Zeppelin UI for access over SSL:

  1. In Ambari, access the "Advanced zeppelin-config" section of the Zeppelin configuration settings:

  2. Set zeppelin.ssl to true.

  3. Configure key manager and key store settings with the correct values for your system:

    1. Set zeppelin.ssl.key.manager.password to the password associated with the key manager.

    2. Set zeppelin.ssl.keystore.password to the password associated with the key store.

    3. Set zeppelin.ssl.keystore.path to the path associated with the key store.

    4. Set zeppelin.ssl.keystore.type to the type of key store configured on the cluster (for example, JKS).

  4. If you wish to use client-side certificate authentication, enable client-side authentication and configure the associated trust store settings:

    1. Set zeppelin.ssl.cient.auth to true

    2. Set zeppelin.ssl.truststore.path to the path associated with your trust store.

    3. Set zeppelin.ssl.truststore.password to the password associated with your trust store.

    4. Set zeppelin.ssl.truststore.type to the type of trust store configured on the cluster (for example, JKS).

  5. Check to make sure that all settings are valid.

  6. Connect using HTTPS.

Note: When SSL is enabled for Zeppelin, the Safari browser requires a Certificate Authority-signed certificate to access the Zeppelin UI.