You are viewing a plain text version of this content. The canonical link for it is here.
Posted to user@ambari.apache.org by Roshan Punnoose <ro...@gmail.com> on 2014/01/23 18:04:45 UTC
SSL Connect
Some of my nodes are not able to connect to the ambari-server using HTTPS.
I see timeouts that look like this:
NetUtil.py:55 - Failed to connect to https://<host>:8440/cert/ca due to
[Errno 8] _ssl.c:492: EOF occurred in violation of protocol
NetUtil.py:74 - Server at https://<host>:8440 is not reachable, sleeping
for 10 seconds...
Any ideas? Maybe just the ability to turn off https for now?
Roshan
Re: SSL Connect
Posted by Siddharth Wagle <sw...@hortonworks.com>.
Hi Roshan,
Did installing tls on ambari-server, remedy the situation with SSL
handshake?
Ambari currently does not have a import/export for configs for core-site /
mapre-site, etc.
However, there is a script,
"/var/lib/ambari-server/resources/scripts/configs.sh" which will help you
save configs / edit configs etc.
-Sid
On Fri, Jan 24, 2014 at 5:17 AM, Roshan Punnoose <ro...@gmail.com> wrote:
> Is there anyway to export my hadoop/etc configurations, reinstall ambari,
> and reimport these configurations? (Without having to write them all back
> through the UI?)
>
>
> On Thu, Jan 23, 2014 at 1:33 PM, Roshan Punnoose <ro...@gmail.com>wrote:
>
>> Looks like: (on the failing hosts)
>> rpm -qa | grep openssl
>> - openssl-1.0.1e-15.el6.x86_64
>>
>> rpm -qa | grep tls
>> - gnutls-2.8.5-10.el6_4.2.x86_64
>>
>> The ambari server:
>> - rpm -qa | grep openssl
>> openssl098e-0.9.8e-17.el6.centos.2.x86_64
>> openssl-1.0.1e-16.el6_5.x86_64
>>
>> - rpm -qa | grep tls (Returns nothing)
>>
>>
>> On Thu, Jan 23, 2014 at 12:53 PM, Siddharth Wagle <swagle@hortonworks.com
>> > wrote:
>>
>>> Hi Roshan,
>>>
>>> Seems like a problem with SSL handshake. What is the version of OS you
>>> are on?
>>> Also, can you check openssl and tls versions installed on the failing
>>> hosts.
>>>
>>> Example:
>>>
>>> [root@c6401 resources]# rpm -qa | grep openssl
>>> openssl-devel-1.0.1e-16.el6_5.4.x86_64
>>> openssl-1.0.1e-16.el6_5.4.x86_64
>>>
>>> [root@c6401 resources]# rpm -qa | grep tls
>>> gnutls-2.8.5-10.el6_4.2.x86_64
>>>
>>> -Sid
>>>
>>>
>>> On Thu, Jan 23, 2014 at 9:04 AM, Roshan Punnoose <ro...@gmail.com>wrote:
>>>
>>>> Some of my nodes are not able to connect to the ambari-server using
>>>> HTTPS. I see timeouts that look like this:
>>>>
>>>> NetUtil.py:55 - Failed to connect to https://<host>:8440/cert/ca due
>>>> to [Errno 8] _ssl.c:492: EOF occurred in violation of protocol
>>>> NetUtil.py:74 - Server at https://<host>:8440 is not reachable,
>>>> sleeping for 10 seconds...
>>>>
>>>> Any ideas? Maybe just the ability to turn off https for now?
>>>>
>>>> Roshan
>>>>
>>>>
>>>
>>> CONFIDENTIALITY NOTICE
>>> NOTICE: This message is intended for the use of the individual or entity
>>> to which it is addressed and may contain information that is confidential,
>>> privileged and exempt from disclosure under applicable law. If the reader
>>> of this message is not the intended recipient, you are hereby notified that
>>> any printing, copying, dissemination, distribution, disclosure or
>>> forwarding of this communication is strictly prohibited. If you have
>>> received this communication in error, please contact the sender immediately
>>> and delete it from your system. Thank You.
>>
>>
>>
>
--
CONFIDENTIALITY NOTICE
NOTICE: This message is intended for the use of the individual or entity to
which it is addressed and may contain information that is confidential,
privileged and exempt from disclosure under applicable law. If the reader
of this message is not the intended recipient, you are hereby notified that
any printing, copying, dissemination, distribution, disclosure or
forwarding of this communication is strictly prohibited. If you have
received this communication in error, please contact the sender immediately
and delete it from your system. Thank You.
Re: SSL Connect
Posted by Roshan Punnoose <ro...@gmail.com>.
Is there anyway to export my hadoop/etc configurations, reinstall ambari,
and reimport these configurations? (Without having to write them all back
through the UI?)
On Thu, Jan 23, 2014 at 1:33 PM, Roshan Punnoose <ro...@gmail.com> wrote:
> Looks like: (on the failing hosts)
> rpm -qa | grep openssl
> - openssl-1.0.1e-15.el6.x86_64
>
> rpm -qa | grep tls
> - gnutls-2.8.5-10.el6_4.2.x86_64
>
> The ambari server:
> - rpm -qa | grep openssl
> openssl098e-0.9.8e-17.el6.centos.2.x86_64
> openssl-1.0.1e-16.el6_5.x86_64
>
> - rpm -qa | grep tls (Returns nothing)
>
>
> On Thu, Jan 23, 2014 at 12:53 PM, Siddharth Wagle <sw...@hortonworks.com>wrote:
>
>> Hi Roshan,
>>
>> Seems like a problem with SSL handshake. What is the version of OS you
>> are on?
>> Also, can you check openssl and tls versions installed on the failing
>> hosts.
>>
>> Example:
>>
>> [root@c6401 resources]# rpm -qa | grep openssl
>> openssl-devel-1.0.1e-16.el6_5.4.x86_64
>> openssl-1.0.1e-16.el6_5.4.x86_64
>>
>> [root@c6401 resources]# rpm -qa | grep tls
>> gnutls-2.8.5-10.el6_4.2.x86_64
>>
>> -Sid
>>
>>
>> On Thu, Jan 23, 2014 at 9:04 AM, Roshan Punnoose <ro...@gmail.com>wrote:
>>
>>> Some of my nodes are not able to connect to the ambari-server using
>>> HTTPS. I see timeouts that look like this:
>>>
>>> NetUtil.py:55 - Failed to connect to https://<host>:8440/cert/ca due to
>>> [Errno 8] _ssl.c:492: EOF occurred in violation of protocol
>>> NetUtil.py:74 - Server at https://<host>:8440 is not reachable,
>>> sleeping for 10 seconds...
>>>
>>> Any ideas? Maybe just the ability to turn off https for now?
>>>
>>> Roshan
>>>
>>>
>>
>> CONFIDENTIALITY NOTICE
>> NOTICE: This message is intended for the use of the individual or entity
>> to which it is addressed and may contain information that is confidential,
>> privileged and exempt from disclosure under applicable law. If the reader
>> of this message is not the intended recipient, you are hereby notified that
>> any printing, copying, dissemination, distribution, disclosure or
>> forwarding of this communication is strictly prohibited. If you have
>> received this communication in error, please contact the sender immediately
>> and delete it from your system. Thank You.
>
>
>
Re: SSL Connect
Posted by Roshan Punnoose <ro...@gmail.com>.
Looks like: (on the failing hosts)
rpm -qa | grep openssl
- openssl-1.0.1e-15.el6.x86_64
rpm -qa | grep tls
- gnutls-2.8.5-10.el6_4.2.x86_64
The ambari server:
- rpm -qa | grep openssl
openssl098e-0.9.8e-17.el6.centos.2.x86_64
openssl-1.0.1e-16.el6_5.x86_64
- rpm -qa | grep tls (Returns nothing)
On Thu, Jan 23, 2014 at 12:53 PM, Siddharth Wagle <sw...@hortonworks.com>wrote:
> Hi Roshan,
>
> Seems like a problem with SSL handshake. What is the version of OS you are
> on?
> Also, can you check openssl and tls versions installed on the failing
> hosts.
>
> Example:
>
> [root@c6401 resources]# rpm -qa | grep openssl
> openssl-devel-1.0.1e-16.el6_5.4.x86_64
> openssl-1.0.1e-16.el6_5.4.x86_64
>
> [root@c6401 resources]# rpm -qa | grep tls
> gnutls-2.8.5-10.el6_4.2.x86_64
>
> -Sid
>
>
> On Thu, Jan 23, 2014 at 9:04 AM, Roshan Punnoose <ro...@gmail.com>wrote:
>
>> Some of my nodes are not able to connect to the ambari-server using
>> HTTPS. I see timeouts that look like this:
>>
>> NetUtil.py:55 - Failed to connect to https://<host>:8440/cert/ca due to
>> [Errno 8] _ssl.c:492: EOF occurred in violation of protocol
>> NetUtil.py:74 - Server at https://<host>:8440 is not reachable, sleeping
>> for 10 seconds...
>>
>> Any ideas? Maybe just the ability to turn off https for now?
>>
>> Roshan
>>
>>
>
> CONFIDENTIALITY NOTICE
> NOTICE: This message is intended for the use of the individual or entity
> to which it is addressed and may contain information that is confidential,
> privileged and exempt from disclosure under applicable law. If the reader
> of this message is not the intended recipient, you are hereby notified that
> any printing, copying, dissemination, distribution, disclosure or
> forwarding of this communication is strictly prohibited. If you have
> received this communication in error, please contact the sender immediately
> and delete it from your system. Thank You.
Re: SSL Connect
Posted by Siddharth Wagle <sw...@hortonworks.com>.
Hi Roshan,
Seems like a problem with SSL handshake. What is the version of OS you are
on?
Also, can you check openssl and tls versions installed on the failing hosts.
Example:
[root@c6401 resources]# rpm -qa | grep openssl
openssl-devel-1.0.1e-16.el6_5.4.x86_64
openssl-1.0.1e-16.el6_5.4.x86_64
[root@c6401 resources]# rpm -qa | grep tls
gnutls-2.8.5-10.el6_4.2.x86_64
-Sid
On Thu, Jan 23, 2014 at 9:04 AM, Roshan Punnoose <ro...@gmail.com> wrote:
> Some of my nodes are not able to connect to the ambari-server using HTTPS.
> I see timeouts that look like this:
>
> NetUtil.py:55 - Failed to connect to https://<host>:8440/cert/ca due to
> [Errno 8] _ssl.c:492: EOF occurred in violation of protocol
> NetUtil.py:74 - Server at https://<host>:8440 is not reachable, sleeping
> for 10 seconds...
>
> Any ideas? Maybe just the ability to turn off https for now?
>
> Roshan
>
>
--
CONFIDENTIALITY NOTICE
NOTICE: This message is intended for the use of the individual or entity to
which it is addressed and may contain information that is confidential,
privileged and exempt from disclosure under applicable law. If the reader
of this message is not the intended recipient, you are hereby notified that
any printing, copying, dissemination, distribution, disclosure or
forwarding of this communication is strictly prohibited. If you have
received this communication in error, please contact the sender immediately
and delete it from your system. Thank You.