Details
-
Bug
-
Status: Resolved
-
Major
-
Resolution: Fixed
-
2.7.4
Description
When running ambari-server setup-security and choosing '[1] Enable HTTPS for Ambari server.' we give the following information:
Do you want to disable HTTPS [y/n] ? n
SSL port [8080] ? 8080
Enter path to Certificate: <Certificate File>
Enter path to Private Key: <Key File>
Please enter password for Private Key: <empty>
Generating random password for HTTPS keystore...done.
Importing and saving Certificate...done.
Thereafter Unix permission of the systemwide Java truststore
/var/lib/ca-certificates/java-cacerts are changed from mode 444 to 640.
In consequence Applications do not start anymore because the truststore is not world readable. It's creating impact on applications which is run by other users.
Attachments
Issue Links
- links to