Cloudera Community

Support Questions

Find answers, ask questions, and share your expertise
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Advanced Search
Announcements
Celebrating as our community reaches 100,000 members! Thank you!

Docker Nifi - No Available Buckets

Labels:
avatar
author-rank Presley8
New Contributor

Created on ‎12-10-2020 01:12 PM - last edited on ‎12-11-2020 08:31 AM by Community Manager Community Manager

I'm running Nifi and Nifi Registry docker images ( apache/nifi:latest and apache/nifi-registry:latest )


Both services are running with ldap auth

I configured my user as a initial admin 

In Registry, my user is configured with all privileges

And created a user with CN=<dns>, OU=NIFI with all privileges too

I created two buckets ( a public and a not public,  for test)

buckets.png

 

And added my user in policies of both buckets and give all permissions

I configured Registry Url in NIFI

But when i try import a flow, Nifi only show public bucket

Captura de tela de 2020-12-10 18-02-53.png

 

And and i try "Start version control", there is none buckets avaliable

Captura de tela de 2020-12-10 18-04-17.png

I read all other topic with this subject, but they all have error messagens.

And for me, no error message appears.

 

I belive is something with privileges.

But i already configured all policies in NIFI and Registry

 

 

Any Ideas ?

 

1,067 Views
0 Kudos
1 REPLY 1

avatar
author-rank harregoces
New Contributor

Created ‎01-26-2021 08:59 AM

I have the same problem and the solucion is ridiculous easy.

I set the secure docker nifi instance and I call the instance as nifi, I also set the secure docker nifi-registry and I call it as nifi-registry.

I register the user in nifi-registry as "CN=nifi, OU=NIFI" (the devil is in the detail, be sure you use OU=NIFI and not OU=nifi or OU=Nifi).

I discovery this using this logback.xml setting the level of logger from INFO to TRACE

nifi

<logger name="org.apache.nifi.registry" level="TRACE"/>

 nifi-registry

<logger name="org.apache.nifi" level="TRACE"/>

After that I check in the docker log

docker logs nifi-registry -f

You there will find something like

 Authorizing proxy [identity[CN=nifi, OU=NIFI], groups[]] for write

Also I suggest you read this post

https://community.hortonworks.com/articles/171173/setting-up-a-secure-nifi-to-integrate-with-a-secur...

In the section "Localhost User Configuration in Registry", think you are not making the request from localhost but from nifi docker instance.

 

If this solves your problem, please accept this as answer so others running into it can find this solution. Thanks!

980 Views
Announcements
Product Announcements
[ANNOUNCE] Cloudera on Public Cloud Runtime 7.2.18 is GA!
What's New @ Cloudera
Cloudera Operational Database (COD) supports enhancements to...
Community Announcements
March 2024 Community Highlights
Community Announcements
Celebrating 100,000 Members: A Journey of Growth and Connect...
Product Announcements
[ANNOUNCE] New Cloudera JDBC Connector for Apache Hive 2.6.2...
View More Announcements