Cloudera Community

Support Questions

Find answers, ask questions, and share your expertise
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Advanced Search
Solved Go to solution

Multi user configuration in Nifi, how to?

avatar
author-rank rafy
Contributor

Created ‎07-12-2022 09:36 AM

Hello all,

I do not know how to configure multi users on 3 nodes Nifi Cluster:

Currently, i use the following to generate client & server certificates using TLS toolkit:

./tls-toolkit.sh standalone -B password -C 'CN=nifiadmin, OU=NIFI' -n 'node1,node2,node3' --nifiDnPrefix 'CN=' --nifiDnSuffix ', OU=NIFI' -o /shared_folder/vm_shared/certs_100722/ -K password -P password -S password

 

I want to configure 3 users for this 3 nodes cluster.

Your help would be greatly appreciated.

Thank you.

3,002 Views
0 Kudos
1 ACCEPTED SOLUTION

avatar
author-rank MattWho author-rank
Master Mentor

Created ‎07-14-2022 08:56 AM

@rafy 
Once you have created the certificates for your other two users as @DigitalPlumber suggested, you would need to connect to your NiFi as the admin user you setup during initial securing of your NiFi and these two new users via the NiFi global menu (upper right corner) --> Users.   Then you would need to authorize those new user identities against any policies needed for them to perform the actions you want them to be allowed. 
https://nifi.apache.org/docs/nifi-docs/html/administration-guide.html#config-users-access-policies

 

Hope this helps,

Matt

View solution in original post

2,961 Views
0 Kudos
3 REPLIES 3

avatar
author-rank DigitalPlumber author-rank
Expert Contributor

Created ‎07-12-2022 12:35 PM

Hi @rafy please refer to the user authentication portion of this doc:

https://nifi.apache.org/docs/nifi-docs/html/administration-guide.html#user_authentication
Given that you are familiar with the toolkit and you only want to autheticate 3 users, then creating 3 user certs is simplest approach.
Just have them add the created certs to their browser.

 

2,980 Views

avatar
author-rank MattWho author-rank
Master Mentor

Created ‎07-14-2022 08:56 AM

@rafy 
Once you have created the certificates for your other two users as @DigitalPlumber suggested, you would need to connect to your NiFi as the admin user you setup during initial securing of your NiFi and these two new users via the NiFi global menu (upper right corner) --> Users.   Then you would need to authorize those new user identities against any policies needed for them to perform the actions you want them to be allowed. 
https://nifi.apache.org/docs/nifi-docs/html/administration-guide.html#config-users-access-policies

 

Hope this helps,

Matt

2,962 Views
0 Kudos

avatar
author-rank rafy
Contributor

Created ‎07-14-2022 09:33 AM

Thank you sir. I was able to generate more users/client certificates by specifying multiple "-C CN=user1, OU=nifi" in addition to the initial command i have.

2,949 Views
0 Kudos
Announcements
What's New @ Cloudera
Cloudera Data Engineering 1.23: Access Spark from Your Favor...
What's New @ Cloudera
HBase REST server scaling support is Generally Available
What's New @ Cloudera
New CLI option in the update-database command
What's New @ Cloudera
New Action menu item in the Cloudera Operational Database UI
What's New @ Cloudera
Get the list of supported instance types in the Cloudera Ope...
View More Announcements