Environment HA

FreeIPA is an open-source product that combines four identity management capabilities, that is LDAP directory, Kerberos KDC, DNS server, and Certificate Authority (CA). A FreeIPA cluster can be provisioned with a maximum of three nodes to provide high availability (HA) for Cloudera environments.

The node provisioning depends on the Data Lake you choose for your Cloudera Public Cloud deployment.

Enterprise Data Lake has a FreeIPA cluster with three nodes (HA) provisioned.
important
Cloudera recommends that the production setup always have Enterprise Data Lake configuration and run with three FreeIPA nodes.
Light Duty Data Lake has a FreeIPA cluster with 2 nodes provisioned.

FreeIPA HA cannot be added to an existing environment, only configured during environment creation. When you configure FreeIPA HA, the HA process allows an automatic failover when a FreeIPA instance fails, and then initiates a scripted manual process to recover the system with no downtime.

To understand FreeIPA, see FreeIPA identity management. For information about FreeIPA HA, see Managing FreeIPA.