BDA V4.5 Node Migration/Reprovision Fails on Step 10 StartHadoopServices Due to "First error: TLS/SSL Client Truststore File Password is required when TLS/SSL Client Truststore File Location is set." (Doc ID 2159154.1)

Last updated on JULY 12, 2016

Applies to:

Big Data Appliance Integrated Software - Version 4.5.0 and later
Linux x86-64

Symptoms

Running node Migration or Reprovision on BDA V4.5 fails on Step 10 StartHadoopServices as below:

1. The bdacli command to migrate/reprovision the node fails on Step 10 with:

************************************
Error [45567]: (//bdanode03.example.com//Stage[main]/Hadoop::Startsvc2/Exec[setup_scm]/returns)
change from notrun to 0 failed: /opt/oracle/BDAMammoth/bdaconfig/tmp/setupscm.sh &>
/opt/oracle/BDAMammoth/bdaconfig/tmp/setupscm_1467943574.out returned 1 instead of one of [0]
************************************

2. The /opt/oracle/BDAMammoth/bdaconfig/tmp/setupscm_<#>.out file on Node 3 reports:

Succeeded. Output in : /opt/oracle/BDAMammoth/bdaconfig/tmp/cm_commands.out
API Version used is v12
Succeeded. Output in : /opt/oracle/BDAMammoth/bdaconfig/tmp/cm_service_commands_restart.out
Command ID is 3887

Command 3887 finished after 5 seconds
Operation failed
Result Message is: "Command failed to run because service mgmt has invalid configuration. Review and correct its configuration. First error: TLS/SSL Client Truststore File Password is required when TLS/SSL Client Truststore File Location is set.",

 

3. In the Cloudera Manager Rest API the following is observed:

{
"name" : "TRUSTSTORE_PASSWORD",
"value" : ""
}

4. /etc/cloudera-scm-agent/config.ini on all nodes of the cluster may contain either:
use_tls=1
or
use_tls=0

(Although part of the solution is to ensure that use_tls=1 in /etc/cloudera-scm-agent/config.ini.)

5. In Cloudera Manager, the below passwords are empty:

Verify by navigating as follows:

oozie > configuration > Search: Oozie TLS/SSL Certificate Trust Store Password
hue > configuration > Search: Hue TLS/SSL Private Key Password
mgmt > configuration > Search: TLS/SSL Client Truststore File Password
mgmt > configuration > Search: Navigator TLS/SSL Certificate Trust Store Password
mgmt > configuration > Search: TLS/SSL Keystore Key Password
mgmt > configuration > Search: TLS/SSL Keystore File Password

 

Cause

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms