Renew host certificates on Data Lake and Data Hub clusters
Host certificates are valid for one year; to keep the Data Lake and Data Hub clusters running, you must renew the certificates before they expire.
During periodic cluster state synchronization, CDP uses the Cloudera Manager API to check that the HOST_AGENT_CERTIFICATE_EXPIRY apiHealthCheck alert is in a GOOD state. If the apiHealthCheck is not in a GOOD state, CDP displays a warning in the UI.
These UI warnings will display on the associated Environments, Data Lakes, or Data Hubs list and details pages. For example:

You must have Full Administration user role.