Cloudera Community

Support Questions

Find answers, ask questions, and share your expertise
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Advanced Search
Announcements
Celebrating as our community reaches 100,000 members! Thank you!
Solved Go to solution

NiFi InvokeHttp processor with self-signed endpoint

avatar
author-rank oliver
Rising Star

Created ‎09-14-2016 04:20 PM

I'm trying to use InvokeHTTP to write to webhdfs via Knox (into a kerberos secured cluster). Knox is using a self-signed certificate and that is not likely to change. If I use curl with the -k param to allow self-signed certs I can successfully write to HDFS. When using InvokeHTTP though, it barfs on the self-signed cert ("unable to find valid certification path to requested target"). I'm using Apachie NiFi 1.0 (though same problem with 0.7) with HDP 2.2 cluster. Any ideas?

4,172 Views
1 ACCEPTED SOLUTION

avatar
author-rank andrewg author-rank
Guru

Created ‎09-14-2016 05:05 PM

Hi Oliver. One would need to configure SSL context and add the self-signed certificate to the keystore used by it. Take a look at https://nifi.apache.org/docs/nifi-docs/components/org.apache.nifi.ssl.StandardSSLContextService/inde...

The components which support SSL will have a controller service property to reference. You would configure all SSL details and keystores in there, to be used by other processors.

View solution in original post

3,226 Views
2 REPLIES 2

avatar
author-rank andrewg author-rank
Guru

Created ‎09-14-2016 05:05 PM

Hi Oliver. One would need to configure SSL context and add the self-signed certificate to the keystore used by it. Take a look at https://nifi.apache.org/docs/nifi-docs/components/org.apache.nifi.ssl.StandardSSLContextService/inde...

The components which support SSL will have a controller service property to reference. You would configure all SSL details and keystores in there, to be used by other processors.

3,227 Views

avatar
author-rank oliver
Rising Star

Created ‎09-15-2016 02:17 PM

Thanks Andrew - didn't read deep enough into the docs.

3,226 Views
0 Kudos
Announcements
Product Announcements
[ANNOUNCE] Cloudera on Public Cloud Runtime 7.2.18 is GA!
What's New @ Cloudera
Cloudera Operational Database (COD) supports enhancements to...
Community Announcements
March 2024 Community Highlights
Community Announcements
Celebrating 100,000 Members: A Journey of Growth and Connect...
Product Announcements
[ANNOUNCE] New Cloudera JDBC Connector for Apache Hive 2.6.2...
View More Announcements