Flume Thrift Security Parameters
On a secure cluster, SSL for Flume Thrift Source and Sink is automatically configured.
IMPORTANT This component is deprecated. Hewlett Packard
Enterprise recommends using an alternate product. For more information, see Discontinued Ecosystem Components.
In your MapR secure cluster, if the
flume-agent
configuration file does not specify SSL parameters, they are automatically supplied as
follows: - In EEP 6.0.0, SSL for Flume Thrift Source and Sink is automatically configured.
- In EEP 6.0.1, SSL for Flume Thrift and Avro Source and Sink is automatically configured.
Flume Thrift clients have the following configuration parameters for wire-level security:
Parameter for SSL
ssl
- Enables SSL. If set to
true
, thekeystore
andkeystore-password
parameters must also be specified. Default:false
. If thessl
parameter is not specified, it is defaulted totrue
for Thrift clients if cluster security is enabled.
Parameters for Thrift Source
keystore
- Specifies the path to the Java keystore. The
ssl_keystore
uses the samessl_keystore
specified in thessl.server.keystore.location
section of/opt/mapr/conf/ssl-client.xml
,/opt/mapr/conf/ssl_keystore
. keystone-password
- Specifies the password for the Java keystore. The
keystore-password
uses the same password specified in thessl.client.keystore.password
of/opt/mapr/conf/ssl-client.xml
,<ssl-keystore-password>
. keystore-type
- Specifies the type of the Java keystore:
JKS
orPKCS12
. Thekeystore-type
uses the samessl_keystore
specified in thessl.client.keystore.type
section of/opt/mapr/conf/ssl-client.xml
.
Parameters for Thrift Sink
truststore
- Specifies the path to the Java truststore.
The
truststore
uses the samessl_keystore
specified in thessl.client.truststore.location
section of/opt/mapr/conf/ssl-client.xml
. truststore-password
- Specifies the password for the Java truststore.
The
truststore-password
uses the samessl_keystore
specified in thessl.client.truststore.password
section of/opt/mapr/conf/ssl-client.xml
. truststore-type
- Specifies the type of the Java keystore. This can be
JKS
orPKCS12
. Thetruststore-type
uses the samessl_keystore
specified in thessl.client.truststore.type
section of/opt/mapr/conf/ssl-client.xml
.