https://community.cloudera.com/t5/Archives-of-Support-Questions/Granting-access-to-secured-HDF-after-initial-admin/m-p/172075#M42030 <P>Hello,</P><P>I've created an HDF instance that authenticates with LDAP, the initial admin was setup using a SSL certificate so I can get into the NiFi console as the admin user. I am trying to grant access to another non-admin user and getting the below error when trying to login from another host that does not have certificate:</P><PRE>2016-09-27 17:56:55,897 INFO [NiFi Web Server-28] o.a.n.w.s.NiFiAuthenticationFilter Authentication success for cn=test user,ou=users,dc=hadoop,dc=com 2016-09-27 17:56:55,898 INFO [NiFi Web Server-28] o.a.n.w.a.c.AccessDeniedExceptionMapper cn=test user,ou=users,dc=hadoop,dc=com does not have permission to access the requested resource. Returning Forbidden response.</PRE><P>It looks like its authenticating fine with my LDAP server but running to issues with authorization. </P><P>In the NiFi console i've created that user, "cn=test user,ou=users,dc=hadoop,dc=com" and granted access policy to "view the component. </P><P>Here is login-identity provider:</P><P>&lt;property name="User Search Base"&gt;OU=users,DC=hadoop,DC=com&lt;/property&gt;</P><P>&lt;property name="User Search Filter"&gt;uid={0}&lt;/property&gt;</P><P>and the results of ldapsearch:</P><P># test user, users, instream.com</P><P>dn: cn=test user,ou=users,dc=hadoop,dc=com</P><P>uid: tuser</P><P>Am I creating the user incorrectly in NiFi or require any additional settings in nifi.properties?</P><P>Thanks</P> Wed, 28 Sep 2016 01:18:11 GMT mliem 2016-09-28T01:18:11Z https://community.cloudera.com/t5/Archives-of-Support-Questions/Granting-access-to-secured-HDF-after-initial-admin/m-p/172075#M42030 <P>Hello,</P><P>I've created an HDF instance that authenticates with LDAP, the initial admin was setup using a SSL certificate so I can get into the NiFi console as the admin user. I am trying to grant access to another non-admin user and getting the below error when trying to login from another host that does not have certificate:</P><PRE>2016-09-27 17:56:55,897 INFO [NiFi Web Server-28] o.a.n.w.s.NiFiAuthenticationFilter Authentication success for cn=test user,ou=users,dc=hadoop,dc=com 2016-09-27 17:56:55,898 INFO [NiFi Web Server-28] o.a.n.w.a.c.AccessDeniedExceptionMapper cn=test user,ou=users,dc=hadoop,dc=com does not have permission to access the requested resource. Returning Forbidden response.</PRE><P>It looks like its authenticating fine with my LDAP server but running to issues with authorization. </P><P>In the NiFi console i've created that user, "cn=test user,ou=users,dc=hadoop,dc=com" and granted access policy to "view the component. </P><P>Here is login-identity provider:</P><P>&lt;property name="User Search Base"&gt;OU=users,DC=hadoop,DC=com&lt;/property&gt;</P><P>&lt;property name="User Search Filter"&gt;uid={0}&lt;/property&gt;</P><P>and the results of ldapsearch:</P><P># test user, users, instream.com</P><P>dn: cn=test user,ou=users,dc=hadoop,dc=com</P><P>uid: tuser</P><P>Am I creating the user incorrectly in NiFi or require any additional settings in nifi.properties?</P><P>Thanks</P> Wed, 28 Sep 2016 01:18:11 GMT https://community.cloudera.com/t5/Archives-of-Support-Questions/Granting-access-to-secured-HDF-after-initial-admin/m-p/172075#M42030 mliem 2016-09-28T01:18:11Z https://community.cloudera.com/t5/Archives-of-Support-Questions/Granting-access-to-secured-HDF-after-initial-admin/m-p/172076#M42031 <P>Have you granted that user the global policy to "view the ui" from the policies section in the top-right menu?</P> Wed, 28 Sep 2016 01:23:50 GMT https://community.cloudera.com/t5/Archives-of-Support-Questions/Granting-access-to-secured-HDF-after-initial-admin/m-p/172076#M42031 bbende 2016-09-28T01:23:50Z