Radoop Proxy

Radoop Proxy lets you tunnel all Radoop connections through a single machine residing on the edge of your secure Hadoop cluster and so it makes the networking configuration easier.

Radoop Proxy architecture

The Radoop Proxy is a server component that comes bundled with RapidMiner Server. It can accept connections from RapidMiner Studio and forwards these connections towards Hadoop forming a single access point of the cluster. It is typically installed on one of the secured cluster machines (can be an existing Hadoop node or a dedicated machine / edge node), so it resides on the same local network as the cluster nodes. Outside of the secured cluster only a dedicated port of the Radoop Proxy is available so making the default networking setup obsolete.

In order to use a Radoop Proxy, RapidMiner Studio users must be authenticated. Authentication is done by a RapidMiner Server that is connected to the Radoop Proxy.

The connection between RapidMiner Studio users and Radoop Proxy can be easily secured with SSL if the certificates for the machine hosting the proxy is available. Since both RapidMiner Server users and Hadoop users can be managed in a central LDAP server, this enables a centralized and convenient user management as well.

Setting up a Radoop Proxy Connection

  1. Create a new Radoop Proxy Connection from RapidMiner Studio or from RapidMiner Server. The fields on the Setup tab are explained below:

    Field Description
    Radoop Proxy Server host IP address or hostname of the Radoop Proxy server
    Radoop Proxy Server port Radoop Proxy Server port. Default is 1081
    Use Enterprise SSO Use the Enterprise SSO token from the parent Repository. Only displayed with Radoop Proxy Connections that are in Repository Panel. Should only be used with a Radoop Proxy Server configured with SAML authentication see Custom Radoop Proxy Installation for details. RapidMiner Server user and RapidMiner Server password are disabled when this feature is used.
    RapidMiner Server user Username for authenticating. This is disabled when Use Enterprise SSO is checked.
    RapidMiner Server password Password to use for the connection. This is disabled when Use Enterprise SSO is checked.
    Use secure (SSL) connection Use SSL for the proxy connection. See Radoop Proxy is secured for details. If your certificate is NOT well-known then you need to fill in Keystore file and Keystore password.
    Keystore file (SSL) Keystore file that contains the SSL cert to use, if cert is well known, you can leave this empty. This is disabled when Use secure (SSL) connection is unchecked.
    Keystore password (SSL) password to use to unlock the keystore, if keystore has no password, you can leave this empty. This is disabled when Use secure (SSL) connection is unchecked.
  2. In the Connections menu, select Edit data connection Icon Manage Radoop Connections, edit your connection by clicking Configure, and on the Radoop Proxy tab check Use Radoop Proxy:

  3. Select the location of your proxy definition from the first dropdown selector in the Radoop Proxy Connection section. Choose Local Repository for connection set up in Studio or the name of the Server repository in case of remote connections.

  4. Select the connection from the second dropdown selector in the Radoop Proxy Connection section. In case of server locations you may need to click on the Refresh button Refresh button to sync the connections from the Server to Studio. You also have the option to click on Edit button Edit button to edit an existing or to create a new Radoop Proxy connection right from this screen.