Enabling TLS/SSL for Cloudera Migration Assistant

Learn more about how to enable and configure TLS/SSL for Cloudera Migration Assistant when deploying the Cloudera Migration Assistant server locally or with Docker.

• Ensure that you have a PKCS12 keystore created with the cma key alias. JKS keystore is also supported.

1. Click Settings on the homepage of Cloudera Migration Assistant.

   

2. Enable TLS/SSL using the checkbox on the TLS Settings page.

   

3. Provide the Keystore File Location.
4. Provide the Keystore File Password.
5. Select the Keystore Type from the drop-down menu.
6. Provide a Key Alias.
7. Provide the Keystore Key Password.
8. Click Save.
9. Click Restart after saving the TLS/SSL configurtations.

After restarting, the Cloudera Migration Assistant server listens on the default port 8090 (HTTP) and 8093 (HTTPS), and all HTTP requests are redirected to the HTTPS port.