Regenerating a Resource Principal Token
Regenerate a Big Data Service cluster resource principal tokens from the Resource details page.
Resource principals are automatically refreshed before its expiry. Big Data Service tries to refresh the token after 80% of its lifetime/ttl. For the cases where manual regenerate is needed, Big Data Service supports force refresh of the tokens.
Big Data Service refreshes the token after the existing token passes 80% of it's life span. For example, if the life span is 10 hours, Big Data Service begins to retry by the 8th hours.
- For automatic renewal and distribution of the tokens to the nodes, Ambari uses
bigdata-service-configurator. - We recommend using RPST token within cluster nodes for automatic renewal.
- In case of failures, Big Data Service retries up to three times at 10 minute intervals.
Regenerate a resource principal token from the Resource principal details page.
- On the Clusters list page, select the cluster that you want to work with. If you need help finding the list page or the cluster, see Listing Clusters in a Compartment.
- On the Cluster details page, under Resources, select Resource principal.
- On the Resource principals page, select the resource principal you want to work with.
- Select Regenerate resource token.
- Use the force-refresh-resource-principal command and required parameters to force the refresh of the resource principal for the cluster.
oci bds instance force-refresh-resource-principal [OPTIONS]For a complete list of flags and variable options for CLI commands, see the Command Line Reference for Big Data.
Use the operation ForceRefreshResourcePrincipal to force the refresh of a resource principal in a Big Data Service cluster.