Support Questions

Find answers, ask questions, and share your expertise
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Advanced Search
Announcements
Check out our newest addition to the community, the Cloudera Data Analytics (CDA) group hub.
Solved Go to solution

Nifi autherization using Ldap

Labels:
laijucbabu
New Contributor

Created ‎01-30-2018 01:49 PM

Hi team ,

In our environment we are using Nifi 1.2.0 in HDF 3. We used Ambari for installation and configuration . We are not installed Nifi CA Certificate authority . We integrated Nifi with AD .

In this scenario how can we create a Initial Admin Identity . Due to this we are not able to login to Nifi UI


Regards

Laiju

653 Views
0 Kudos
1 ACCEPTED SOLUTION

bbende
Guru

Created ‎01-30-2018 03:21 PM

You can set the Initial Admin identity to the identity of one of your LDAP users.

The value will be dependent on how you have configured NiFi's LDAP login-identity-provider.

<property name="Identity Strategy">USE_DN</property>

If Identity Strategy is USE_DN, then the Initial Admin value should be the full DN from LDAP.

If Identity Strategy is USE_USERNAME, then the Initial Admin value should be just the username.

You may also need to shutdown NiFi, and manually remove /var/lib/nifi/conf/users.xml and /var/lib/nifi/conf/authorizations.xml from each node, because NiFi only makes use of the Initial Admin when there are no other users/groups/policies defined.

View solution in original post

619 Views
2 REPLIES 2

bbende
Guru

Created ‎01-30-2018 03:21 PM

You can set the Initial Admin identity to the identity of one of your LDAP users.

The value will be dependent on how you have configured NiFi's LDAP login-identity-provider.

<property name="Identity Strategy">USE_DN</property>

If Identity Strategy is USE_DN, then the Initial Admin value should be the full DN from LDAP.

If Identity Strategy is USE_USERNAME, then the Initial Admin value should be just the username.

You may also need to shutdown NiFi, and manually remove /var/lib/nifi/conf/users.xml and /var/lib/nifi/conf/authorizations.xml from each node, because NiFi only makes use of the Initial Admin when there are no other users/groups/policies defined.

620 Views

laijucbabu
New Contributor

Created ‎02-01-2018 10:11 AM

Hi Bryan ,

Thanks a lot for your help . It worked perfectly .

619 Views
0 Kudos
Take a Tour of the Community
Don't have an account?
Register
Your experience may be limited. Sign in to explore more.
Announcements
Product Announcements
CDP Public Cloud: May 2023 Release Summary
What's New @ Cloudera
Cloudera Operational Database (COD) provides enhancements to the --scale-type CDP CLI option
What's New @ Cloudera
Cloudera Operational Database (COD) UI supports creating a smaller cluster using a predefined Data Lake template
What's New @ Cloudera
Cloudera Operational Database (COD) supports scaling up the clusters vertically
Product Announcements
CDP Public Cloud: April 2023 Release Summary
View More Announcements