Cloudera Community

Archives of Support Questions (Read Only)

This is an archived board for historical reference. Information and links may no longer be available or relevant
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Advanced Search
Announcements
This board is archived and read-only for historical reference. To ask a new question, please post a new topic on the appropriate active board.
Solved Go to solution

Nifi - Trusted SSL configuration With HDF

avatar
author-rank Anishkumarv
Contributor

Created on ‎06-07-2017 03:08 PM - last edited on ‎04-21-2026 05:22 AM by Community Manager Community Manager

Hi Team,

I am trying to configure SSL in nifi - HDF but i am getting "invalid cert authority error".

The same trusted cert workig in standalone nifi.

Do we need to specify anything for Hdf- Nifi? for trusted ssl setup

Please provide your input to close this thread.

2,191 Views
0 Kudos
1 ACCEPTED SOLUTION

avatar
author-rank MattWho author-rank
Master Mentor

Created ‎06-07-2017 03:28 PM

@Anishkumar Valsalam

Standalone NiFi instances have no need to perform and 2-way TLS negotiations. Once you cluster, NiFi nodes need to communicate with each other and that negotiation uses 2-way TLS. Not sure where you got your keystore and truststore files from, but you need to verify that the contents of both are correct. The truststore.jks file should contain the necessary trustedCertEntries so that it can trust the client certificate being presented from the other nodes in your cluster.

Matt

View solution in original post

1,984 Views
0 Kudos
3 REPLIES 3

avatar
author-rank Anishkumarv
Contributor

Created ‎06-07-2017 03:09 PM

@Matt Clarke

So many issues while configuring HDF, need your inputs to close this thread brother.

1,984 Views
0 Kudos

avatar
author-rank MattWho author-rank
Master Mentor

Created ‎06-07-2017 03:28 PM

@Anishkumar Valsalam

Standalone NiFi instances have no need to perform and 2-way TLS negotiations. Once you cluster, NiFi nodes need to communicate with each other and that negotiation uses 2-way TLS. Not sure where you got your keystore and truststore files from, but you need to verify that the contents of both are correct. The truststore.jks file should contain the necessary trustedCertEntries so that it can trust the client certificate being presented from the other nodes in your cluster.

Matt

1,985 Views
0 Kudos

avatar
author-rank Anishkumarv
Contributor

Created ‎06-07-2017 05:40 PM

Thanks Matt , It seems becuase of corrupted keystore after replaced with the valid keystore it was resolved. 🙂

1,984 Views
0 Kudos
Announcements
What's New @ Cloudera
Cloudera Real time Monitoring for 7.1.9+ and 7.2.18+ with Cl...
What's New @ Cloudera
Announcing Cloudera Streaming Analytics 1.17: Python UDFs, S...
Community Announcements
Content Update: Evolving Our Community Content for Better, A...
Community Announcements
Product Name Updates — Community Label Changes & Notificatio...
What's New @ Cloudera
Announcing Cloudera Data Lineage for Trino
View More Announcements