Cloudera Runtime Release NotesPDF version

Ranger KMS

Learn about the new features of Ranger KMS in Cloudera Runtime 7.1.9

Ability to migrate keys from Key Trustee Server to Ranger KMS DB. For more information, refer to : Migrating keys from Key Trustee Server to Ranger KMS.

Added field within RANGER KMS to add items to the JAVA_OPTS environment variable to enable better debugging and tuning. For more information , refer to: How to pass JVM options to Ranger KMS KTS services.

Additional Ranger KMS Server health metrics have been added to Cloudera Manager. For more information, refer to Ranger KMS Server Metrics.

How to integrate Cloudera Ranger Key Management System (KMS) software with the Luna 10.5 HSM appliance supplied by SafeNet. For more information, refer to : Set up Luna 10.5 HSM Client for Ranger KMS.

Ranger KMS Ozone support is available in 7.1.9. For more information, refer to Configuring Transparent Data Encryption for Ozone.

Ranger KMS now supports Linux Distributions RHEL 9.1, RHEL 8.8, and RHEL 8.8 FIPS

Ranger KMS can connect to TLS-enabled MySQL, MariaDB, or PostgreSQL databases and TCPS-enabled Oracle database. To connect to a TLS/TCPS-enabled database while adding the Schema Registry service to a cluster, see Configure TLS 1.2 for Ranger KMS. You can also enable TLS/TCPS on an existing database and then configure Schema Registry to connect to it. See Set up and configure TLS 1.2 for Ranger KMS . For more information about Oracle TCPS, see How to connect CDP components to a TCPS-enabled Oracle database.