[ https://issues.apache.org/jira/browse/HAWQ-1510?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Hongxu Ma closed HAWQ-1510. --------------------------- Resolution: Fixed done > Add TDE-related functionality into hawq command line tools > ---------------------------------------------------------- > > Key: HAWQ-1510 > URL: https://issues.apache.org/jira/browse/HAWQ-1510 > Project: Apache HAWQ > Issue Type: Sub-task > Components: Command Line Tools > Reporter: Hongxu Ma > Assignee: Hongxu Ma > Fix For: 2.3.0.0-incubating > > > 1, hawq init > the only way to enable tde in hawq: > user should give a key name(already created by hadoop key command) parameter > when execuate the init command, it makes the whole hawq_default directory as > an encryption zone. > note: > * cannot support transfer the existed(and non-empty) hawq_default directory > into an encryption zone. > * create encryption zone need hdfs *superuser privilege*, so if hawq user and > hdfs superuser is not the same one, you should create the encryption zone on > hawq directory manually before running hawq-init script, example: > {code} > hdfs crypto -createZone -keyName key_demo -path /hawq_default/ > {code} > command: > {code} > hawq init cluster --tde_keyname key_demo > {code} > -2, hawq state- > -show the encryption zone info if user enable tde in hawq.- > -3, hawq register- > cannot register file in different encryption zones / un-encryption zones. > -4, hawq extract- > give user a warning of the table data is stored in encryption zone if user > enable tde in hawq. -- This message was sent by Atlassian JIRA (v6.4.14#64029)