Support Questions

Find answers, ask questions, and share your expertise
Celebrating as our community reaches 100,000 members! Thank you!

Nifi authentication ldap can login but cant acces ui




i want to ask about nifi login, i can login but cant acces nifi ui in nifi-user log success. this my nifi-user.log and error in nifi ui 




thank you



Master Collaborator

Based on the provided information, it seems that you are able to successfully log in to Nifi, but you are encountering an error when trying to access the Nifi UI. The error message suggests that there is an SSLPeerUnverifiedException, specifically related to the hostname and subjectAltNames.

This error usually occurs when there is a certificate validation issue. The certificate being used by Nifi may not be recognized or trusted by your system, causing the SSL connection to fail.

To resolve this issue, you can try the following steps:

1. Check the certificate: Verify the certificate being used by Nifi and ensure it is correctly configured. Make sure that the certificate has the correct subjectAltName entries for the hostname you are using to access Nifi UI.

2. Trust the certificate: If the certificate is valid but not trusted by your system, you can add it to the trust store of your Java installation or the certificate store of your operating system. This will allow your system to trust the certificate and establish a secure SSL connection.

3. Check network configuration: Ensure that there are no network or firewall issues preventing the SSL connection between your client and the Nifi server. Confirm that the correct ports (usually 8080 or 8443) are open and accessible.

4. Verify Nifi configuration: Double-check the Nifi configuration files, especially the file, to ensure that the SSL configuration is correctly set up. Pay attention to properties related to keystore, truststore, and SSL/TLS protocols.

If you found that the provided solution(s) assisted you with your query, please take a moment to login and click Accept as Solution below each response that helped.