[NIFI-2959] TLS Toolkit should provide the correct DN to authorizers.xml for the Initial Admin Identity - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Improvement
Status: Resolved
Priority: Major
Resolution: Won't Do
Affects Version/s: 1.0.0
Fix Version/s: None
Component/s: Tools and Build
Labels:
- security
- tls-toolkit

Description

Users frequently experience a user permission error when trying to access a secured instance of NiFi after using the TLS toolkit to create a client certificate because the whitespace formatting of the provided DN differs from the resulting certificate subject. The toolkit should output a clear log line with the exact string that should be copied to authorizers.xml Initial Admin Identity when a client certificate is generated, and if a special flag is invoked during the command line call, the provided authorizers.xml should be updated directly.

Attachments

Issue Links

Is contained by

NIFI-5458 Improve NiFi TLS and certificate management

Resolved

is related to

NIFI-3063 TLS Toolkit ignores provided password if longer than 7 characters and switches to auto-generated 7 character password

Resolved

NIFI-12200 Remove nifi-toolkit-tls module

Resolved

Activity

People

Assignee:: Unassigned

Reporter:: Andy LoPresto

Votes:: 0 Vote for this issue

Watchers:: 4 Start watching this issue

Dates

Created:: 27/Oct/16 18:57

Updated:: 03/Nov/23 20:51

Resolved:: 03/Nov/23 20:51