[NIFI-2193] Command Line Keystore and Truststore utility - ASF JIRA

XML

Word

Printable

JSON

Details

Type: New Feature
Status: Resolved
Priority: Major
Resolution: Fixed
Affects Version/s: None
Fix Version/s: 1.0.0, 1.0.0-Beta
Component/s: None
Labels:
- certificate
- security
- tls

Description

In order to facilitate secure setup of NiFi, it would be useful to have a command line utility capable of generating the required keystores, truststore, and relevant configuration files.

It should be able to generate keystores for each NiFi node, a truststore that they all use, and relevant passwords and configuration files for using the keystores and truststore.

Additionally, in order to support distributed deployment, a web based certificate authority with corresponding client will allow for each NiFi instance to generate its own keypair and then request signing by the CA.

Attachments

Issue Links

is related to

NIFI-2476 Further refine tls-toolkit based on feedback gathered during beta

Resolved

NIFI-2477 Document tls-toolkit

Resolved

relates to

NIFI-2485 Standalone tool sensible default for nifiProperties, httpsPort, outputDirectory

Resolved

links to

GitHub Pull Request #695

Activity

People

Assignee:: Bryan Rosander

Reporter:: Bryan Rosander

Votes:: 0 Vote for this issue

Watchers:: 6 Start watching this issue

Dates

Created:: 07/Jul/16 17:29

Updated:: 04/Aug/16 21:24

Resolved:: 04/Aug/16 04:37