Question-116: What is the difference between Cloudera navigator logs and Cloudera manager logs?

Answer:  Navigator tracks and aggregate access to the data stored in CDH services and it used for audit report and analysis.  Cloudera manager monitors and logs all the activity performed by CDH services that helps administrators maintain the health of the cluster.

Question-117:  Is Cloudera Navigator Key Trustee Server specific to host?

Answer:  Yes, when the key Trustee server role is created it is tightly bound to the Identity of the host on which it is installed.  Moving the role to a different host, changing the hostname, or changing the IP of the host is not supported. You can install navigator key Trustee server using Cloudera manager with parcels. 

Question-118:  What is AES-NI?

Answer:  The AES-NI is known as Advanced Encryption Standard New Instructions; this is an instruction set. That is designed to improve the speed of encryption and decryption using AES.  Some newer processors come with AES-NI, which can be enabled on per server basis. 

Question-119: What is navigator key HSM?

Answer:  Cloudera navigator key HSM is a Universal hardware security module driver that translates between the target HSM platform and Cloudera navigator key Trustee server.  With the HSM you can use a key Trustee server to securely store and retrieve encryption keys and other secure objects, without being limited solely on hardware-based platform. Keep in mind that you install key HSM on the same host as the key Trustee server.  

Question-120: What is the key Trustee KMS?

Answer:  Key Trustee KMS is a custom key management server (KMS) that uses Cloudera navigator key Trustee server, which is the underline key Store, instead of the file-based Java KeyStore (JKS) which is used by the default Hadoop KMS.