Complete a 3 Question Survey and Earn a re:Post Badge

Help improve AWS Support Official channel in re:Post and share your experience - complete a quick three-question survey to earn a re:Post badge!

Why can't I reach my Amazon EMR cluster?

3 minute read

I can't connect to my Amazon EMR cluster.

Resolution

Incorrect Amazon EMR security group rules

To resolve this issue, take the following actions:

Verify that the Amazon EMR managed security group rules are correct for internal users and external users and applications.
Allow TCP on port 8443 so that the cluster manager can communicate with the cluster's primary node.
Allow SSH on port 22 so that you can use SSH to connect to the cluster.

Incorrect setup for Amazon EMR clusters in a private subnet

To resolve this issue, take the following actions:

Add a managed security group for service access. The security group rules must allow the cluster manager to communicate with the cluster nodes.
If you're using a bastion host, then configure the bastion host security group to allow inbound traffic from the client system. Also, configure the Amazon EMR cluster security groups to allow inbound traffic from the bastion host.

Note: Network configuration setups vary, so make sure that you correctly set the end-to-end connection without black holes.

Incorrect authentication setup

Check whether the authentication setup uses an Amazon Elastic Compute Cloud (Amazon EC2) keypair or Kerberos. Then, correctly configure your authentication setup.

Resource constraints in the cluster node

To resolve this issue, take the following actions:

Verify that the underlying primary node exists and is in the running state.
Check the instance-state log of the primary node to determine how you're using resources.
Run the following command to check for the top CPU user:
```
ps auxwww --sort -%cpu | head -10
```
Run the following command to check the kernel's performance:
```
dmesg | tail -n 25
```
Run the following command to check memory usage:
```
free -m
```
Run the following command to check disk usage:
```
df -h
```

Primary node's instance controller isn't running

Make sure that the primary node's instance controller is running. The instance controller is the daemon that runs on the cluster nodes and communicates with the Amazon EMR control plane and the rest of the cluster.

Run the following command to check the status of the instance controller on Amazon EMR versions 5.30.0 and later:

sudo systemctl status instance-controller

If the instance controller isn't active, then run the following command to start the instance controller:

sudo systemctl start instance-controller

To check the status of and start the instance controller on earlier Amazon EMR versions, see How do I restart a service in Amazon EMR?

Topics

Analytics

Relevant content

Why is my kernel not working within Jupyter notebook?
Ryder
asked a year ago
Beginner question: Attach EMR cluster to Workspace - default security groups fail
Accepted Answer
lxs602
asked 4 months ago
Issues Accessing Apache Superset on EMR Cluster via SSH Tunneling
Sachin
asked 9 months ago
Error Connecting to MySQL RDS from EMR Cluster: Plugin jdbc Could Not Be Loaded
Sachin
asked 8 months ago
Studio Workspace can't see my runnning EMR EC2 cluster to attach to
ken cottrell
asked a year ago
Why was my EMR cluster terminated?
AWS OFFICIALUpdated 2 years ago
Why did my Amazon EMR cluster terminate with an "application provisioning failed" error?
AWS OFFICIALUpdated 2 years ago
Why isn't my EMR cluster scaling even though I have managed scaling turned on or resizing metrics were met?
AWS OFFICIALUpdated 2 years ago
How do I install and troubleshoot Python libraries in Amazon EMR and Amazon EMR Serverless clusters?
AWS OFFICIALUpdated 8 months ago
EMR Cluster log analysis for "Terminated with Internal errors"
SUPPORT ENGINEER
Yokesh NK
published a year ago