Cloudera Docs

Configuration change detection

The Configuration change detection feature enhances cluster stability and manageability by delivering proactive notifications whenever critical configuration settings are altered.

The Configuration change detection feature enables administrators to identify and monitor unexpected or potentially impactful changes across essential services. By promptly flagging these modifications, the system reduces the risk of errors, streamlines troubleshooting, and strengthens compliance and operational security. This feature plays a vital role in ensuring a consistent and reliable operating environment.

Key capabilities

The Configuration change detection feature provides the following key capabilities:

  • Automatic polling — A background service automatically checks for backend configuration updates every 5 minutes.
  • Visual alerts — When a configuration change is detected, administrators are notified through a notification banner and a persistent warning icon on the affected environment.

Configuration changes that trigger notifications

The detection mechanism is configured to monitor and generate notifications for configuration changes across a critical set of components within both Cloudera Manager and the Cloudera Control Plane.

Monitored Services in Cloudera Manager

Notifications are triggered for configuration changes within the following services:

  • Impala — Configuration changes related to query execution, memory limits, and catalog service settings.
  • Hive — File and property edits affecting the hive-site.xml file, metastore operations, execution engines, and security policies.
  • Hue — Configuration changes affecting user authentication, connection settings, and UI presentation.
  • Ranger — Policy and configuration file changes affecting authorization, auditing, and service-specific security setups.
  • Hive Metastore Service (HMS) — Configuration changes affecting the metastore, database connection parameters, and resource settings.
  • Ozone — Configuration changes affecting storage volume, bucket creation, replication, and security settings within the object store.
  • Zookeeper — Ensemble configuration changes affecting data directory settings, and client connection parameters essential for cluster coordination.

Monitored configurations in Cloudera Control Plane

Notifications are also triggered for changes to the following Cloudera Control Plane configurations:

  • Authentication configuration — Configuration changes affecting external directory connections, user search bases, binding credentials, and security protocol settings.
  • Kerberos configuration — Configuration changes affecting KDC principal settings, key-tab management, domain realm mappings, and security-related files such as krb5.conf .
  • Certificate updates — Modifications or renewals of SSL/TLS certificates and related truststore or keystore configurations used for secure communication within the cluster and with external clients.