Support Questions
Find answers, ask questions, and share your expertise
Announcements
Check out our newest addition to the community, the Cloudera Innovation Accelerator group hub.

Encrypting custom variable registry

Explorer

Hello,

We have created a custom variable registry file with a list of items. The file contains credentials to data sources.

Is there any possible way to encrypt this?

I've checked the nifi-toolkit and when running the help command, it shows values within that file can be encrypted. Is this possible for a custom variable registry file?

1 ACCEPTED SOLUTION

Master Guru

@Nikhil Chaudhary

The encryption of values in the NiFi variable registry is not there yet. It is a future goal in Apache NiFi.

There is an existing Apache Jira that covers the adding of this capability:

https://issues.apache.org/jira/browse/NIFI-2653

Thanks,

Matt

View solution in original post

2 REPLIES 2

Master Guru

@Nikhil Chaudhary

The encryption of values in the NiFi variable registry is not there yet. It is a future goal in Apache NiFi.

There is an existing Apache Jira that covers the adding of this capability:

https://issues.apache.org/jira/browse/NIFI-2653

Thanks,

Matt

Explorer

Has there been any progress on this ticket? I couldn't tell from the link you have. This is definite a big use case for our use of NiFi. We plan to integrate our secrets management platform with NiFi by injecting static secrets into the variable registry so that our controller services never need manual password entry. However, this is not possible for us until the variable registry is able to be encrypted at rest.

Is there still work being made on this front?