Uploaded image for project: 'Apache NiFi'
  1. Apache NiFi
  2. NIFI-3331

TLS Toolkit - add the possibility to define a SAN in issued certificates

    XMLWordPrintableJSON

Details

    • Improvement
    • Status: Resolved
    • Major
    • Resolution: Fixed
    • 1.1.1
    • 1.2.0
    • Tools and Build

    Description

      To ease the deployment of a load balancer in front of NiFi, it would be nice to allow users to define a SAN in certificates issued by the CA.

      To load balance the access to the UI or even with a ListenHTTP processor, both will cause errors with a "Host mismatch" kind of error because of different fqdn between nodes certificate and LB certificate. This is also discussed here: http://stackoverflow.com/questions/40035356/nifi-load-balancer

      Attachments

        Issue Links

          relates to

          Improvement - An improvement or enhancement to an existing feature or task. NIFI-3490 TLS Toolkit - define SAN in standalone mode

          • Minor - Minor loss of function, or other problem where easy workaround is present.
          • Resolved
          links to

          Web Link GitHub Pull Request #1491

          Activity

            People

              pvillard Pierre Villard
              pvillard Pierre Villard
              Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: