Support Questions

michael_kalika · ‎11-23-2016

I'm trying to consume API protected with NTLM authentication [Windows server]. I configured GetHttp process with Url of the server and username + password.

Username in a format of domain/username. I doubled checked the credentials and they are fine.

The GetHttp doesn't work and I am getting 401 [unauthorized] error from the API server.

Here's NiFi log output:

2016-11-23 17:45:22,272 WARN [Timer-Driven Process Thread-7]
o.a.http.impl.auth.HttpAuthenticator NEGOTIATE authentication error: No valid
credentials provided (Mechanism level: No valid credentials provided (Mechanism
level: Failed to find any Kerberos tgt))
2016-11-23 17:45:22,272 WARN [Timer-Driven Process Thread-7]
o.a.http.impl.auth.HttpAuthenticator NTLM authentication error: Credentials
cannot be used for NTLM authentication:
org.apache.http.auth.UsernamePasswordCredentials
2016-11-23 17:45:22,274 ERROR [Timer-Driven Process
Thread-7] o.a.nifi.processors.standard.GetHTTP
GetHTTP[id=91ce7dfd-0158-1000-1c53-cf24cf132983] received status code
401:Unauthorized from http://internal.api.ep/dosomething

I will appreciate any recommendation how to work this out.

Thank you!

knarayanan · ‎11-23-2016

Looks like gethttp does not support nt authentication from looking at the code. if you open a jira we can get it added and have a patch available.

View solution in original post

rich_midwinter · ‎07-31-2017

Any chance you could send me your patched library? I'd be interested in the diff too.

rich_midwinter · ‎08-01-2017

Don't worry. Rolled my own, seems to work for me.

marcusmattson1 · ‎11-16-2017

I haven't seen any movement on the jira for a while. I am interested in the alternative nar. If you still need some testing of it, I am able to help.

Cloudera Community

Support Questions

Issues with GetHttp and NTLM authentication in NiFi,Consuming HTTP API with NTLM auth doesn't work