Configuring Apache Zeppelin Security
Also available as:
PDF

Configure SSL for Zeppelin

Use the following steps to configure SSL for Apache Zeppelin.

  1. In Ambari, access the "Advanced zeppelin-config" section of the Zeppelin configuration settings.
  2. Set zeppelin.ssl to true.
  3. Configure key manager and key store settings with the correct values for your system:
    1. Set zeppelin.ssl.key.manager.password to the password associated with the key manager.
    2. Set zeppelin.ssl.keystore.password to the password associated with the key store.
    3. Set zeppelin.ssl.keystore.path to the path associated with the key store.
    4. Set zeppelin.ssl.keystore.type to the type of key store configured on the cluster (for example, JKS).
  4. If you wish to use client-side certificate authentication, enable client-side authentication and configure the associated trust store settings:
    If you wish to use client-side certificate authentication, enable client-side authentication and configure the associated trust store settings:
  5. Check to make sure that all settings are valid.
  6. Connect using HTTPS.

Note: When SSL is enabled for Zeppelin, the Safari browser requires a Certificate Authority-signed certificate to access the Zeppelin UI.