Help Center>
CloudTable Service>
User Guide>
HBase User Guide>
HBase Cluster Management>
HBase Security Channel Encryption
Updated on 2024-06-21 GMT+08:00
HBase Security Channel Encryption
You can enable security channel encryption to encrypt data transmission. This section describes how to enable the security channel for a HBase cluster.
Enabling Channel Encryption
- Log in to the CloudTable console.
- Click
in the upper left corner to select a region. - Click Buy Cluster in the upper right corner.
- Check whether Enable Channel Encryption (which is toggled on by default) is toggled on after completing other configurations.
Figure 1 Enabling channel encryption
- Completing the parameter setting and click Next.
- Confirm the cluster specification order information on the displayed page and submit the order. After the cluster is created, go to its details page to view the channel status.
Procedure for Connecting to an HBase Security Cluster
- Log in to the CloudTable console.
- Click
in the upper left corner to select a region. - Choose Help > Download hbase2.x Client to download the client.
- Install the client and prepare an ECS.
- Use the SSH login tool (such as PuTTY) to log in to the Linux ECS through the EIP.
For details about how to log in to the ECS, see "Remotely Logging In to a Linux ECS (Using an SSH Password)" in Logging In to a Linux ECS of the Elastic Cloud Server User Guide.
- Install the client downloaded in Step 3. For details, see Manually Installing a Client. (You can also use One-Click Deployment to install the client.)
- Modify the hbase-env.sh file. Go to the directory where the client is installed and run the ll command to check whether the HBase client exists.
- Go to the hbase-client folder and view the conf folder.
cd hbase-client
- Go to the conf folder and edit the hbase-env.sh file.
- Go to the conf folder.
cd conf/
- Edit the hbase-env.sh file.
vi hbase-env.sh
- Add the following content to the end of the hbase-env.sh file:
CLIENT_JVMFLAGS="-Dzookeeper.clientCnxnSocket=org.apache.zookeeper.ClientCnxnSocketNetty -Dzookeeper.client.secure=true" export HBASE_OPTS="${CLIENT_JVMFLAGS} ${HBASE_OPTS}" - Click Ecs to exit the editing page.
- Save the added content.
:wq
- Go to the conf folder.
- Go to the hbase-client folder and view the conf folder.
- Go to the client installation directory to configure the client. Add the following configurations to the hbase-site.xml file in the conf directory on the client:
- Edit the hbase-site.xml file.
vi hbase-site.xml
- Add the following content to the end of the hbase-site.xml file:
<property> <name>hbase.rpc.protection</name> <value>privacy</value> </property> - Click Ecs to exit the editing page.
- Save the added content.
:wq
- Edit the hbase-site.xml file.
- Connect to the HBase cluster.
- Configure the ZooKeeper address in the configuration file. For details, see 3.2.5.1-c. Configuring the ZooKeeper Address.
- Start the shell to access the cluster.
Run the bin/hbase shell command to start the shell to access the cluster.
Parent topic: HBase Cluster Management
Feedback
Was this page helpful?
Provide feedbackThank you very much for your feedback. We will continue working to improve the documentation.See the reply and handling status in My Cloud VOC.
The system is busy. Please try again later.
For any further questions, feel free to contact us through the chatbot.
Chatbot
