Support Questions

nikhil1 · ‎03-28-2017

Hello,

We have created a custom variable registry file with a list of items. The file contains credentials to data sources.

Is there any possible way to encrypt this?

I've checked the nifi-toolkit and when running the help command, it shows values within that file can be encrypted. Is this possible for a custom variable registry file?

MattWho · ‎03-28-2017

@Nikhil Chaudhary

The encryption of values in the NiFi variable registry is not there yet. It is a future goal in Apache NiFi.

There is an existing Apache Jira that covers the adding of this capability:

https://issues.apache.org/jira/browse/NIFI-2653

Thanks,

Matt

View solution in original post

MattWho · ‎03-28-2017

@Nikhil Chaudhary

The encryption of values in the NiFi variable registry is not there yet. It is a future goal in Apache NiFi.

There is an existing Apache Jira that covers the adding of this capability:

https://issues.apache.org/jira/browse/NIFI-2653

Thanks,

Matt

orekxl · ‎11-28-2017

Has there been any progress on this ticket? I couldn't tell from the link you have. This is definite a big use case for our use of NiFi. We plan to integrate our secrets management platform with NiFi by injecting static secrets into the variable registry so that our controller services never need manual password entry. However, this is not possible for us until the variable registry is able to be encrypted at rest.

Is there still work being made on this front?

Cloudera Community

Support Questions

Encrypting custom variable registry

Customizing Atlas (Part1): Model governance, trace...

Hardening Apache ZooKeeper Security Part 2: TLS en...

Introduce a UI driven variable registry starting f...

Working with Variables in Hive (Hive Shell and Bee...

Introduction into Process Group Variables

How to delete a variable from nifi variable regist...

NiFi custom property file or registry variable

Encryption mechanism in NiFi 2.0

How to use Model Registry on Cloudera Machine Lear...

SQL SELECT into Variable