My Oracle Support Banner

BDA V4.5 Node Migration/Reprovision Fails on Step 10 StartHadoopServices Due to "First error: TLS/SSL Client Truststore File Password is required when TLS/SSL Client Truststore File Location is set." (Doc ID 2159154.1)

Last updated on JANUARY 02, 2020

Applies to:

Big Data Appliance Integrated Software - Version 4.5.0 and later
Linux x86-64

Symptoms

NOTE: In the examples that follow, user details, cluster names, hostnames, directory paths, filenames, etc. represent a fictitious sample (and are used to provide an illustrative example only). Any similarity to actual persons, or entities, living or dead, is purely coincidental and not intended in any manner. 

Running node Migration or Reprovision on BDA V4.5 fails on Step 10 StartHadoopServices as below:

1. The bdacli command to migrate/reprovision the node fails on Step 10 with:

************************************
Error [45567]: (//bdanode03.example.com//Stage[main]/Hadoop::Startsvc2/Exec[setup_scm]/returns)
change from notrun to 0 failed: /opt/oracle/BDAMammoth/bdaconfig/tmp/setupscm.sh &>
/opt/oracle/BDAMammoth/bdaconfig/tmp/setupscm_1467943574.out returned 1 instead of one of [0]
************************************

2. The /opt/oracle/BDAMammoth/bdaconfig/tmp/setupscm_<#>.out file on Node 3 reports:

Succeeded. Output in : /opt/oracle/BDAMammoth/bdaconfig/tmp/cm_commands.out
API Version used is v12
Succeeded. Output in : /opt/oracle/BDAMammoth/bdaconfig/tmp/cm_service_commands_restart.out
Command ID is 3887

Command 3887 finished after 5 seconds
Operation failed
Result Message is: "Command failed to run because service mgmt has invalid configuration. Review and correct its configuration. First error: TLS/SSL Client Truststore File Password is required when TLS/SSL Client Truststore File Location is set.",

 

3. In the Cloudera Manager Rest API the following is observed:

{
"name" : "TRUSTSTORE_PASSWORD",
"value" : ""
}

4. /etc/cloudera-scm-agent/config.ini on all nodes of the cluster may contain either:
use_tls=1
or
use_tls=0

(Although part of the solution is to ensure that use_tls=1 in /etc/cloudera-scm-agent/config.ini.)

5. In Cloudera Manager, the below passwords are empty:

Verify by navigating as follows:

oozie > configuration > Search: Oozie TLS/SSL Certificate Trust Store Password
hue > configuration > Search: Hue TLS/SSL Private Key Password
mgmt > configuration > Search: TLS/SSL Client Truststore File Password
mgmt > configuration > Search: Navigator TLS/SSL Certificate Trust Store Password
mgmt > configuration > Search: TLS/SSL Keystore Key Password
mgmt > configuration > Search: TLS/SSL Keystore File Password

 

Cause

To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!


In this Document
Symptoms
Cause
Solution


My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.