Enabling TLS/SSL communication with Impala

By providing a Certificate Authority (CA) certificate, private key, and public certificate, Hue can communicate with Impala over TSL/SSL.

To enable TLS/SSL communication with Impala, add the following properties in the [impala] section under [[ssl]] in the Cloudera Manager Hue Service Advanced Configuration Snippet (Safety Valve) for hue_safety_valve.ini configuration property:

Property Description
[impala]
[[ssl]]
enabled

Valid values: true | false

Enables or disables TLS/SSL communication for this server.

Default setting: false

Example: enabled=true

[impala]
[[ssl]]
cacerts

Valid values: directory path

Specifies the path to the Certificate Authority certificates.

Default setting: /etc/hue/cacerts.pem

Example: cacerts=/opt/cloudera/security/CAcerts/cacerts

[impala]
[[ssl]]
validate

Valid values: true | false

Specifies whether Hue validates certificates received from the server.

Default setting: true

Example: validate=true