BDA V4.5 Node Migration/Reprovision Fails on Step 10 StartHadoopServices Due to "First error: TLS/SSL Client Truststore File Password is required when TLS/SSL Client Truststore File Location is set."
Last updated on JULY 12, 2016
Applies to:
Big Data Appliance Integrated Software - Version 4.5.0 and laterLinux x86-64
Symptoms
Running node Migration or Reprovision on BDA V4.5 fails on Step 10 StartHadoopServices as below:
1. The bdacli command to migrate/reprovision the node fails on Step 10 with:
Error [45567]: (//bdanode03.example.com//Stage[main]/Hadoop::Startsvc2/Exec[setup_scm]/returns)
change from notrun to 0 failed: /opt/oracle/BDAMammoth/bdaconfig/tmp/setupscm.sh &>
/opt/oracle/BDAMammoth/bdaconfig/tmp/setupscm_1467943574.out returned 1 instead of one of [0]
************************************
2. The /opt/oracle/BDAMammoth/bdaconfig/tmp/setupscm_<#>.out file on Node 3 reports:
Succeeded. Output in : /opt/oracle/BDAMammoth/bdaconfig/tmp/cm_commands.out
API Version used is v12
Succeeded. Output in : /opt/oracle/BDAMammoth/bdaconfig/tmp/cm_service_commands_restart.out
Command ID is 3887
Command 3887 finished after 5 seconds
Operation failed
Result Message is: "Command failed to run because service mgmt has invalid configuration. Review and correct its configuration. First error: TLS/SSL Client Truststore File Password is required when TLS/SSL Client Truststore File Location is set.",
3. In the Cloudera Manager Rest API the following is observed:
"name" : "TRUSTSTORE_PASSWORD",
"value" : ""
}
4. /etc/cloudera-scm-agent/config.ini on all nodes of the cluster may contain either:
use_tls=1
or
use_tls=0
(Although part of the solution is to ensure that use_tls=1 in /etc/cloudera-scm-agent/config.ini.)
5. In Cloudera Manager, the below passwords are empty:
- Oozie TLS/SSL Certificate Trust Store Password
- Hue TLS/SSL Private Key Password
- TLS/SSL Client Truststore File Password,
- Navigator TLS/SSL Certificate Trust Store Password
- TLS/SSL Keystore Key Password
- TLS/SSL Keystore File Password
Verify by navigating as follows:
oozie > configuration > Search: Oozie TLS/SSL Certificate Trust Store Password
hue > configuration > Search: Hue TLS/SSL Private Key Password
mgmt > configuration > Search: TLS/SSL Client Truststore File Password
mgmt > configuration > Search: Navigator TLS/SSL Certificate Trust Store Password
mgmt > configuration > Search: TLS/SSL Keystore Key Password
mgmt > configuration > Search: TLS/SSL Keystore File Password
Cause
Sign In with your My Oracle Support account |
|
Don't have a My Oracle Support account? Click to get started |
My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms