Enabling TLS/SSL communication with HiveServer2

For Hue to communicate with HiveServer2 using TLS/SSL, Hue needs the Hive certificate and certificate chain.

To enable TLS/SSL communication with HiveServer2, add the following properties in the [beeswax] section under [[ssl]] in the Cloudera Manager Hue Service Advanced Configuration Snippet (Safety Valve) for hue_safety_valve.ini configuration property:

Property Description
[beeswax]
[[ssl]]
enabled

Valid values: true | false

Enables or disables TLS/SSL communication for this server.

Default setting: false

Example: enabled=true

[beeswax]
[[ssl]]
cacerts

Valid values: directory path

Specifies the path to the Certificate Authority certificates.

Default setting: /etc/hue/cacerts.pem

Example: cacerts=/opt/cloudera/security/CAcerts/cacerts

[beeswax]
[[ssl]]
validate

Valid values: true | false

Specifies whether Hue validates certificates received from the server.

Default setting: true

Example: validate=true