You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@ambari.apache.org by Dmytro Sen <ds...@hortonworks.com> on 2015/08/21 16:07:02 UTC

Review Request 37679: Manual registration of non root ambari agent with two way ssl authentication failed

-----------------------------------------------------------
This is an automatically generated e-mail. To reply, visit:
https://reviews.apache.org/r/37679/
-----------------------------------------------------------

Review request for Ambari, Artem Baranchuk, Myroslav Papirkovskyy, and Vitalyi Brodetskyi.


Bugs: AMBARI-12853
    https://issues.apache.org/jira/browse/AMBARI-12853


Repository: ambari


Description
-------

Install ambari-server
Generate necessary certificates and setup ambari two way ssl authentication.
Install ambari-agent on hosts.
Configure ambari-agent to run under non root user.
Try manual host registration.
IOError: Request to 
https://192.168.64.101:8441/agent/v1/register/c6402.ambari.apache.org failed due to [Errno 13] Permission denied: '/var/lib/ambari-agent/keys/ca.crt'
/var/lib/ambari-agent/keys is created when package is installed and has root owner, so when ambari-agent is running under non-root it is not able to write to that dir.
Should I chown that dir when configuring non root agents? Or agent itself should manage that dir?


Diffs
-----

  ambari-agent/conf/unix/ambari-agent f665934 

Diff: https://reviews.apache.org/r/37679/diff/


Testing
-------

Unit tests passed


Thanks,

Dmytro Sen