Help Center/ MapReduce Service/ User Guide (Kuala Lumpur Region)/ FusionInsight Manager Operation Guide (Applicable to 3.x)/ System Configuration/ OMS Management/ Modifying OMS Service Configuration Parameters
Updated on 2022-08-12 GMT+08:00
View PDF

Modifying OMS Service Configuration Parameters

Scenario

Based on the security requirements of the user environment, you can modify the Kerberos and LDAP configurations in the OMS on FusionInsight Manager.

Impact on the System

After the OMS service configuration parameters are modified, the corresponding OMS module needs to be restarted. In this case, FusionInsight Manager cannot be used.

Procedure

Modifying the okerberos configuration

  1. Log in to FusionInsight Manager and choose System > OMS.
  1. Locate the row that contains the okerberos, click Modify Configuration.
  1. Modify the parameters based on information provided in Table 1.

    Table 1 okerberos parameter configuration

    Parameter

    Description

    KDC Timeout (ms)

    Timeout duration for an application to connect to the Kerberos, in milliseconds. The value must be an integer.

    Max. Retries

    Maximum number of attempts for the connection between an application to the Kerberos, in seconds. Set the parameter to an integer.

    LDAP Timeout (ms)

    Timeout interval for the Kerberos to connect to the LDAP, in milliseconds.

    LDAP Search Timeout (ms)

    Timeout duration for Kerberos to query user information in the LDAP, in milliseconds.

    Kadmin Listening Port

    Port number of the kadmin service.

    KDC Listening Port

    Port number of the kinit service.

    Kpasswd Listening Port

    Port number of the kpasswd service.

  2. Click OK.

    In the displayed dialog box, enter the password of the current login user and click OK. In the displayed confirmation dialog box, click OK.

Modifying the oldap configuration

  1. Locate the row that contains the on-line data processor (OLDAP), click Modify Configuration.
  1. Modify the parameters based on information provided in Table 2.

    Table 2 OLDAP parameter configuration

    Parameter

    Description

    LDAP Listening Port

    Port number of the LDAP service.

  2. Click OK.

    In the displayed dialog box, enter the password of the current login user and click OK. In the displayed confirmation dialog box, click OK.

    To reset the password of the LDAP account, you need to restart ACS. The procedure is as follows:

    1. Log in to the active management node as user omm using PuTTY, and run the following command to update the domain configuration:

      sh ${BIGDATA_HOME}/om-server/om/sbin/restart-RealmConfig.sh

      The command is run successfully if the following information is displayed:

      Modify realm successfully. Use the new password to log into FusionInsight again.
    2. Run the sh $CONTROLLER_HOME/sbin/acs_cmd.sh stop command to stop ACS.
    3. Run the sh $CONTROLLER_HOME/sbin/acs_cmd.sh start command to start ACS.

Restarting the cluster

  1. Log in to FusionInsight Manager and restart the cluster by referring to Performing a Rolling Restart of a Cluster.
Parent topic: OMS Management