Support Questions
Find answers, ask questions, and share your expertise
Announcements
Check out our newest addition to the community, the Cloudera Innovation Accelerator group hub.

Unable to curl the SSl enabled NIFI URL

Hi Team,

 

I am unable to curl the NIFI SSL enabled and tried providing cert but nothing works. Kindly help me to fix this issue.

 


curl --cert-type P12 --cert keystore.p12:password --cacert nifi-cert.pem -v https://w0lxqhdp04:9091/nifi-api/flow/search-results?q=

About to connect() to w0lxqhdp04 port 9091 (#0)
* Trying 10.49.70.16...
* Connected to w0lxqhdp04 (10.49.70.16) port 9091 (#0)
* Initializing NSS with certpath: sql:/etc/pki/nssdb
* CAfile: nifi-cert.pem
CApath: none
* warning: certificate file name "keystore.p12" handled as nickname; please use "./keystore.p12" to force file name
* NSS: client certificate not found: keystore.p12
* NSS error -12271 (SSL_ERROR_BAD_CERT_ALERT)
* SSL peer cannot verify your certificate.
* Closing connection 0
curl: (58) NSS: client certificate not found: keystore.

2 REPLIES 2

@MattWho  Please look into this 

Master Guru

@saivenkatg55 

 

You need to literally use ./keystore.p12 in your command instead of just keystore.p12

curl --cert-type P12 --cert ./keystore.p12:password --cacert nifi-cert.pem -v https://w0lxqhdp04:9091/nifi-api/flow/search-results?q=

 

 

Hope this helps,

Matt