Uploaded image for project: 'Apache NiFi'
  1. Apache NiFi
  2. NIFI-2959

TLS Toolkit should provide the correct DN to authorizers.xml for the Initial Admin Identity

    XMLWordPrintableJSON

    Details

    • Type: Improvement
    • Status: Open
    • Priority: Major
    • Resolution: Unresolved
    • Affects Version/s: 1.0.0
    • Fix Version/s: None
    • Component/s: Tools and Build

      Description

      Users frequently experience a user permission error when trying to access a secured instance of NiFi after using the TLS toolkit to create a client certificate because the whitespace formatting of the provided DN differs from the resulting certificate subject. The toolkit should output a clear log line with the exact string that should be copied to authorizers.xml Initial Admin Identity when a client certificate is generated, and if a special flag is invoked during the command line call, the provided authorizers.xml should be updated directly.

        Attachments

          Issue Links

            Activity

              People

              • Assignee:
                Unassigned
                Reporter:
                alopresto Andy LoPresto
              • Votes:
                0 Vote for this issue
                Watchers:
                2 Start watching this issue

                Dates

                • Created:
                  Updated: