Issues with JMX Authentication for nodetool command

Question

question

bb.addagada_90355 asked Sep 7, '20 Erick Ramirez answered Sep 7, '20

Issues with JMX Authentication for nodetool command

Hi,
we are using DSE 6.7,

I had enabled jmx native authentication using https://docs.datastax.com/en/security/6.7/security/secJmxAuth.html#secJmxAuth.

However, after restarting I am able to run nodetool -u -pwd status command.

But I am able to run nodetool status command without username and password which
I am not expected.

Basically I am trying to avoid JMX vulnerability .

Can you please help me?

jmx

10 |1000

Attachments: Up to 8 attachments (including images) can be used with a maximum of 1.0 MiB each and 10.0 MiB total.

DataStax Enterprise is powered by the best distribution of Apache Cassandra ™

Apache, Apache Cassandra, Cassandra, Apache Tomcat, Tomcat, Apache Lucene, Lucene, Apache Solr, Apache Hadoop, Hadoop, Apache Spark, Spark, Apache TinkerPop, TinkerPop, Apache Kafka and Kafka are either registered trademarks or trademarks of the Apache Software Foundation or its subsidiaries in Canada, the United States and/or other countries.

Privacy Policy Terms of Use

Answer 1 · 2020-09-07T05:25:52Z

Erick Ramirez answered Sep 7, '20

The symptoms you described indicate that either (a) you did not configure it correctly or (b) you have not enabled it by restarting DSE.

I suggest you go over the procedure again and make sure that you followed every single step correctly. If you missed any of the steps, none of it would work. In addition, I recommend you practice configuring it on a non-production environment multiple times before attempting to implement it in a production cluster.

If you still require assistance, please log a DataStax Support ticket so one of our engineers can assist you directly. Cheers!

Share

10 |1000

Attachments: Up to 8 attachments (including images) can be used with a maximum of 1.0 MiB each and 10.0 MiB total.

question