My Oracle Support Banner

Guidelines for Enabling TLS 1.2 on Windows 2008 R2 As a Prerequisite for Integrating Cloudera Manager with Active Directory on a Mammoth Cluster (Doc ID 2303699.1)

Last updated on FEBRUARY 06, 2020

Applies to:

Big Data Appliance Integrated Software - Version 4.9.0 and later
Linux x86-64

Purpose

This note provides guidelines on how to enable TLS 1.2 on Windows 2008 R2 as this is a prerequisite for integrating Cloudera Manager with Active Directory. Follow the specific procedures for your environment. 


On BDA V4.8 and higher TLSv1 is disabled by default for Cloudera Manager/Hue/And in System-Wide Java Configurations. For details see: BDA 4.8 Disables TLSv1 by Default For Cloudera Manager/Hue/And in System-Wide Java Configurations (Doc ID 2250841.1).  Therefore it is required that  Active Directory support  TLS 1.1 or TLS 1.2 to integrate with Cloudera Manager/Hue.

Table of Active Directory versions and TLS 1.1/TLS 1.2 support:

Active Directory Version TLS 1.1 TLS 1.2
Windows 2003 Not Supported Not Supported
Windows 2008 Not Supported Not Supported
Windows 2008 R2 Disabled Disabled
Above Windows 2008 R2 Enabled Enabled

 

Scope

Anyone integrating Cloudera Manager / Hue with Active Directory on the BDA.

Details

To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!


In this Document
Purpose
Scope
Details
 Overview
 Detailed Steps to enable TLS 1.2 on Windows 2008 R2
 Backup the Registry
 Setup a "TLS 1.2" Key
 Create a Client Key
 Create a Server Key
 Reboot the Active Directory Server
References

My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.