AWS EnvironmentsPDF version

Updating instance metadata to IMDSv2

Cloudera can use IMDSv2 or IMDSv1 for accessing EC2 instance metadata from a running instance.

Cloudera currently uses IMDSv2 for accessing EC2 instance metadata on all newly created Data Lakes, FreeIPA clusters, and Cloudera Data Hub clusters, as long as an IMDSv2-compatible image is used. Prior to Cloudera supporting IMDSv2, Data Lakes, FreeIPA clusters, and Cloudera Data Hub clusters used IMDSv1; These clusters created with IMDSv1 can now be updated to IMDSv2 as long as an IMDSv2-compatible image was used to create the cluster.

You can update an existing Data Lake, FreeIPA cluster and Cloudera Data Hub cluster that is currently using IMDSv1 to IMDSv2. This is a zero downtime operation and does not disrupt any existing processes or jobs

Prerequisites

The following prerequisites needs to be met:

Required roles: EnvironmentAdmin or Owner of the environment

Steps

  1. In the Cloudera Management Console, navigate to Data Lake, FreeIPA or Cloudera Data Hub details.

  2. Navigate to Nodes.

  3. The option to Update to IMDSv2 is available as follows:

  4. The update should happen within a few seconds. You can track the status in event history.

If you would like to verify that the update happened correctly, navigate to one of the EC2 instances in your AWS console.

Once the update is complete, the Update to IMDSv2 button is grayed out.

To check if the image is compatible, follow these steps:

Steps

  1. In the Cloudera Management Console, navigate to your cluster.

  2. Navigate to the Image details tab.

  3. Click on the image ID.

  4. Scroll down to Package Versions details of the image:

  5. Package versions include a variable called “imds”. Find this variable and ensure that its value is “v2