Enabling SSL for System Services

Internal security governs the transmission of data between the different components of CDAP. SSL can be enabled between the CDAP Router and CDAP Master (or App Fabric) components.

To enable perimeter security, see the section on Perimeter Security.

Enabling SSL for Master Service

To enable communication between the CDAP Router and App Fabric using SSL in CDAP, add this property to cdap-site.xml:

Property

Value

Description

Property

Value

Description

ssl.internal.enabled

true

true to enable SSL between Router and App Fabric

Default Ports

Without SSL, these properties, unless set specifically, have the following default values:

Property

Default Value

Description

Property

Default Value

Description

app.bind.port

0

App Fabric service bind port

With SSL, these properties, unless set specifically, have the following default values:

Property

Default Value

Description

Property

Default Value

Description

app.ssl.bind.port

30443

App Fabric service bind port