Configuring Impala Virtual Warehouses to encrypt spilled data in CDW on Private Cloud
If you have encrypted HDFS on the base CDP cluster, then Cloudera recommends that you configure an Impala Virtual Warehouse to write temporary data to disk during query processing in an encrypted format using the AES-256-CFB encryption for complete security.
In CDP Private Cloud, the temporary data is spilled to the local storage, the location of which is hard coded by the system.
- Log in to the Data Warehouse service as an administrator.
- Go to flagfile from the Configuration files drop-down list. and select
-
Set the value of the
disk_spill_encryption
property to true. - Click APPLY.
- Go to the Impala executor tab and select flagfile from the Configuration files drop-down list.
-
Set the value of the
disk_spill_encryption
property to true. - Click APPLY.
- Restart the Impala Virtual Warehouse.