Cloudera Community

Support Questions

Find answers, ask questions, and share your expertise
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Advanced Search
Announcements
Celebrating as our community reaches 100,000 members! Thank you!
Solved Go to solution

Nifi autherization using Ldap

Labels:
avatar
author-rank laijucbabu
Explorer

Created ‎01-30-2018 01:49 PM

Hi team ,

In our environment we are using Nifi 1.2.0 in HDF 3. We used Ambari for installation and configuration . We are not installed Nifi CA Certificate authority . We integrated Nifi with AD .

In this scenario how can we create a Initial Admin Identity . Due to this we are not able to login to Nifi UI


Regards

Laiju

918 Views
0 Kudos
1 ACCEPTED SOLUTION

avatar
author-rank bbende author-rank
Master Guru

Created ‎01-30-2018 03:21 PM

You can set the Initial Admin identity to the identity of one of your LDAP users.

The value will be dependent on how you have configured NiFi's LDAP login-identity-provider.

<property name="Identity Strategy">USE_DN</property>

If Identity Strategy is USE_DN, then the Initial Admin value should be the full DN from LDAP.

If Identity Strategy is USE_USERNAME, then the Initial Admin value should be just the username.

You may also need to shutdown NiFi, and manually remove /var/lib/nifi/conf/users.xml and /var/lib/nifi/conf/authorizations.xml from each node, because NiFi only makes use of the Initial Admin when there are no other users/groups/policies defined.

View solution in original post

884 Views
2 REPLIES 2

avatar
author-rank bbende author-rank
Master Guru

Created ‎01-30-2018 03:21 PM

You can set the Initial Admin identity to the identity of one of your LDAP users.

The value will be dependent on how you have configured NiFi's LDAP login-identity-provider.

<property name="Identity Strategy">USE_DN</property>

If Identity Strategy is USE_DN, then the Initial Admin value should be the full DN from LDAP.

If Identity Strategy is USE_USERNAME, then the Initial Admin value should be just the username.

You may also need to shutdown NiFi, and manually remove /var/lib/nifi/conf/users.xml and /var/lib/nifi/conf/authorizations.xml from each node, because NiFi only makes use of the Initial Admin when there are no other users/groups/policies defined.

885 Views

avatar
author-rank laijucbabu
Explorer

Created ‎02-01-2018 10:11 AM

Hi Bryan ,

Thanks a lot for your help . It worked perfectly .

884 Views
0 Kudos
webinar banner
Announcements
Product Announcements
[ANNOUNCE] Cloudera on Public Cloud Runtime 7.2.18 is GA!
What's New @ Cloudera
Cloudera Operational Database (COD) supports enhancements to...
Community Announcements
March 2024 Community Highlights
Community Announcements
Celebrating 100,000 Members: A Journey of Growth and Connect...
Product Announcements
[ANNOUNCE] New Cloudera JDBC Connector for Apache Hive 2.6.2...
View More Announcements
meetups banner