Re-running after Configuration

If the script is initially run without the -genkeys option, the script generates a ssl_keystore file for use by the web server for the MapR Control System (MCS).

Then if the script is re-run with the -genkeys option, the system detects the existing ssl_* files and exits with an error to prevent inadvertent deletion or reuse of the ssl_keystore file.

Note: For general information on certificates, see SSL Certificates.
To re-run on clusters without security features enabled:
  1. Manually delete the ssl_keystore file on each node.
  2. Run the -genkeys -R command.
Note: The contents of the ssl_keystore file are unique to each node.
To re-run on clusters where the contents of the ssl_keystore file are customized:
  1. Run the -genkeys -nocerts -R command to preserve your customizations.

SSL Keys Error Message

The error message will look similar to the following example:

        -secure -genkeys -C $CLDB_GRP -Z $ZK_GRP -RM $RM -HS
        <hostname1>: Configuring Hadoop-2.x at
        <hostname1>: Done configuring Hadoop
        <hostname1>: CLDB node list:
        <hostname1>: Zookeeper node
        list: <hostname1>:5181,<hostname2>:5181,<hostname3>:5181
        <hostname1>: Node setup configuration: cldb fileserver
        historyserver nfs nodemanager resourcemanager webserver
        <hostname1>: Log can be found at:
        <hostname1>: /opt/mapr/conf/ssl_keystore already exists
        <hostname1>: ERROR: could not generate ssl keys. See log file
        for more details
        clush: <hostname1>: exited with exit code 1