As of HttpFS 1.0-1504 and Hue 3.7-1505, you can enable SSL encryption and mutual-based authentication between Hue and HttpFS on a secure MapR cluster that is version 4.0.2 or greater.
Complete the following steps to enable SSL encryption and mutual-based authentication between Hue and HttpFS on a secure cluster:
When you start or restart Hue on a secure cluster, the secure.sh script (
$HUE_HOME/bin/secure.sh)generates the following files in
secure.shscript runs with a set of default parameters, which should not be changed. If generated
keystorefiles already exist in that location, the script does not regenerate the files.
Add the following configuration in the
hue.inifile under the [[hdfs_clusters]] [[[default]]] section:
- Set ca_verify=False
The changes are summarized in the following example hue.ini file, which you can use as a template:
Configure HttpFS to use SSL or verify that HttpFS is configured to use SSL. For details, see SSL Security for HttpFS.
To test that SSL encryption is enabled for HttpFS, run the following command: