Ambari启用https访问(ssl)
来源:互联网 发布:linux xz 编辑:程序博客网 时间:2024/06/15 15:39
1、创建目录
- # mkdir/etc/ambari-server/certs
- # cd /etc/ambari-server/certs/
- # export AMBARI_SERVER_HOSTNAME=c2bde55
2、生成证书
- # openssl genrsa -passout pass:hadoop -out $AMBARI_SERVER_HOSTNAME.key 2048
- # openssl req -new -key $AMBARI_SERVER_HOSTNAME.key -out $AMBARI_SERVER_HOSTNAME.csr
- # openssl x509 -req -days 3650 -in $AMBARI_SERVER_HOSTNAME.csr -signkey $AMBARI_SERVER_HOSTNAME.key -out $AMBARI_SERVER_HOSTNAME.crt
3、安装
# ambari-server setup-security
- # ambari-server restart
- # cat /etc/ambari-server/conf/ambari.properties
4、导入truststore
# cd /etc/ambari-server/certs/
# keytool -import -file /etc/ambari-server/certs/c2bde55.crt -alias ambari-server -keystore ambari-server-truststore
# ambari-server setup-security
# ambari-server restart
# cat /etc/ambari-server/conf/ambari.properties
5、解决view访问证书问题
# keytool -keystore /etc/ambari-server/certs/ambari-server-truststore -storepass 1qaz@WSX -alias CARoot -import -file /etc/security/ca-cert
# keytool -keystore /etc/ambari-server/certs/ambari-server-truststore -storepass 1qaz@WSX -alias localhost -import -file /etc/security/cert-signed -keypass <ca-password>
重要:相关证书验证导入到$JAVA_HOME/jre/lib/security/cacerts时,也同样需要导入到/etc/ambari-server/certs/ambari-server-truststore中
链接:https ca证书安装生成:
http://www.cnblogs.com/zhaojiedi1992/p/zhaojiedi_linux_011_ca.html
http://blog.csdn.net/wjc19911118/article/details/45672733
http://blog.csdn.net/u012749168/article/details/52851431
阅读全文
0 0
- Ambari启用https访问(ssl)
- Apache https(SSL)启用
- nginx配置SSL启用HTTPS
- Tomcat下启用https://访问(单向)
- Tomcat启用https访问
- Nginx(Https) + Tomcat 启用 Https(SSL) 支持
- Oracle EBS R12启用HTTPS安全链接(SSL)
- 使用OkHttp访问ssl(https)网络
- SSL握手过程(访问https)
- Tomcat 下启用 https:// 访问
- nginx启用ssl模块以支持https
- windows系统Nginx使用SSL 启用HTTPS
- Tomcat实现HTTPS&SSL访问
- python HTTPSconnection SSL 访问https
- https访问需要ssl证书
- 如何通过HTTPS(SSL加密)方式访问web service
- 如何通过HTTPS(SSL加密)方式访问webservice
- 如何通过HTTPS(SSL加密)方式访问web service
- activity与fragment的区别
- [LeetCode]19. Remove Nth Node From End of List
- Linux 网络栈剖析
- Spring框架之IoC容器—ListableBeanFactory接口
- Scala继承的特点
- Ambari启用https访问(ssl)
- 转载 有哪些 Android 大牛的 blog 值得推荐?
- QGis二次开发基础 -- 矢量图层属性图表显示
- FPGA仿真--前仿真和后仿真
- 世界上第一款耳机
- oracle sql 索引优化一例
- 通过pip安装docker-compose
- 完数
- ipsec(AH和ESP)