Support Questions

Akram-Khalil · ‎12-08-2025

Dears,

my cluster is TLS and Kerberized, and when try to add CFM 2.1.7 ( NIFI ).

i used https://docs-archive.cloudera.com/cfm/2.1.1/cfm-security/topics/cfm-security-ldap-authentication.htm...
to configure LDAP however, i go the below error from NIFI WebUI

"Authentication Proxy Server not trusted"

Any idea how to solve this.

MattWho · ‎12-08-2025

@Akram-Khalil

What do you see logged in the nifi-app.log when you attempt to access the NiFI UI?

I don't think this is related to your ldap configuration, but I don't have your authorizers.xml or nifi.properties to verify your configuration setup.

This exception is more related to authorization and not authentication.
It is more likely related to missing "proxy user requests" authorization being granted to the NiFi node certificates.

But this should be easy to resolve if enough information can be shared, which includes nifi-userlog output which will show the user client identity being denied authorization and the above mentioned configuration files.

You can also file a Cloudera support ticket if you have a Cloudera support contract and this can be solved live over a call.

Please help our community grow. If you found any of the suggestions/solutions provided helped you with solving your issue or answering your question, please take a moment to login and click "Accept as Solution" on one or more of them that helped.

Thank you,
Matt

Cloudera Community

Support Questions

CFM 2.1.7 ( NIFI ) Could not open, give me error "Authentication Proxy Server not trusted"