Enable Auto-TLS with an intermediate CA signed by an existing Root CA

Auto-TLS greatly simplifies the process of enabling and managing TLS encryption on your cluster.

Auto-TLS supports three use cases:

  • Use case 1: Using Cloudera Manager to generate an internal Certificate Authority and corresponding certificates
  • Use case 2: Enabling Auto-TLS with an intermediate CA signed by an existing Root CA
  • Use case 3: Enabling Auto-TLS with existing certificates

If you are using use case 2, see Use case 2: Enabling Auto-TLS with an intermediate CA signed by an existing Root CA for the procedure to perform this use case now. If you are using use case 1 or 3, Auto-TLS is configured after performing all the steps given in Production Installation: Installing Cloudera Manager, Cloudera Runtime, and Managed Services.