how to integrate NiFi and ldap and how to add differ users for Nifi web access?

Former Member — Fri, 26 Aug 2016 16:52:32 GMT

Re: how to integrate NiFi and ldap and how to add differ users for Nifi web access?

MattWho — Fri, 26 Aug 2016 19:00:44 GMT

NiFi only supports user controlled access when it is configured to run securely over HTTPS.

The HTTPS configuration of NiFi will require a keystore and truststore is created/provided. If you don't have a corporately provided PKI infrastructure that can provide your with TLS certificates for this purpose, you can create your own. The following HCC article will walk you through manually creating your own:

https://community.hortonworks.com/articles/17293/how-to-create-user-generated-keys-for-securing-nif.html

Once your NiFi is setup securely, you will need to enable user access to the UI.

There are two parts to successful access:

1. User authentication <-- This can accomplished via TLS certificates, LDAP, or Kerberos. Setting up NiFi to use one of these login identity providers is covered here:

https://nifi.apache.org/docs/nifi-docs/html/administration-guide.html#user-authentication

2. User Authorization <-- This is accomplished through NiFi via the authorized-users.xml file. This process is documented here:

https://nifi.apache.org/docs/nifi-docs/html/administration-guide.html#controlling-levels-of-access

You will need to manually populate the Authorized-users.xml file with your first "Admin" role user. That Admin user will be able to approve access to other users who have passed the authentication phase and submitted a UI based authorization request.

Thanks,

Matt

question how to integrate NiFi and ldap and how to add differ users for Nifi web access? in Archives of Support Questions (Read Only)

how to integrate NiFi and ldap and how to add differ users for Nifi web access?

Re: how to integrate NiFi and ldap and how to add differ users for Nifi web access?