Install Ranger KMS HSM via Ambari with JCEKS
How to install the Ranger KMS HSM via Ambari with JCEKS.
- Install the SafeNet Luna SA Client software (link below).
- You must have a separate partition for each KMS cluster.
How to install the Ranger KMS HSM via Ambari with JCEKS.
ranger.ks.hsm.enabled
=true
ranger.ks.hsm.partition.name
=Partition
Name
ranger.ks.hsm.partition.password
=_
ranger.ks.hsm.partition.password.alias
=ranger.kms.hsm.partition.password
ranger.ks.hsm.type
=LunaProvider
python /usr/hdp/current/ranger-kms/ranger_credential_helper.py -l "/usr/hdp/current/ranger-kms/cred/lib/*" -f /etc/ranger/kms/rangerkms.jceks -k ranger.kms.hsm.partition.password -v <Partition_Password> -c 1