Cloudera Community
Announcements
Now Live: Explore expert insights and technical deep dives on the new Cloudera Community BlogsRead the Announcement
MattWho
user rank
user rank
Master Mentor

Re: Error connecting to NiFi Registry from NiFi UI...

by Explorer in Support Questions
‎12-20-2025 12:35 PM
‎12-20-2025 12:35 PM
@MattWho Apologies for the delay here. I could finally try using certificates with the EKU Extensions and I do not see a similar authentication issue anymore.  Thank you for the kind assistance!  ... View more

Re: How to elevate a default nifi user to admin - ...

by Explorer in Support Questions
‎12-17-2025 07:13 PM
‎12-17-2025 07:13 PM
Thanks Matt, thats a very useful explanation. ... View more

Re: Error importing NiFi workflow template from ve...

by Master Mentor Master Mentor in Support Questions
‎12-17-2025 05:55 AM
‎12-17-2025 05:55 AM
@Bern  You just need to follow same steps you used in your original post question.   You drag the add process group icon to the canvas.: In the pop-up window select the "browse" icon to far right instead of entering a "Name": Navigate to and select your downloaded flow definition you created in Apache NiFi 1.13 (I would strongly encourage you to be using Apache NiFi 1.28). There have been many changes a fixes and you'll want to make sure your Apache NiFi 1.x dataflows are valid on the latest 1.28 before attempting to move them to Apache NiFi 2.x).  Apache NiFi 1.28 will also have deprecation logging that will help make user aware if they are using components that no longer exist in Apache NiFi 2.x.  You'll need to make modification to your flows so you are no longer using those components before moving your flow definitions over to NiFi 2.x.   Also be aware that NiFi 2.x no longer support NiFi Variables. These were deprecated and removed.  The replacement is NiFi Parameters.  So if you are using Variables in your NiFi 1 dataflows, you' need to modify your dataflows to use paramters before moving your flow definitons over to NiFi 2. After you have selected your flow definition json file, you have option to change name that is displays from json and click "Add": Remember that Apache NiFi 2.x is a major release change and the expectation is that you are on the latest NiFi 1.28 release before attempting to move to NiFi 2.  NOTE:  Cloudera Flow Management (CFM) licensed users have access to Cloudera specific automation tools that can auto transform templates into valid flow definitions and automated migration of CFM 2.1.7 SP2 (Apache NiFi 1.x based) flow.json.gz files into CFM 4.1x (Apache NiFi 2.x based) compatible version. This automation handles deprecated components, converting NiFi variables (deprecated) into NiFi parameters (replacement), etc. https://docs.cloudera.com/cfm/4.11.0/cfm-migration-tool/topics/cfm-mt-overview.html#concept_wlv_sl3_... Please help our community grow. If you found any of the suggestions/solutions provided helped you with solving your issue or answering your question, please take a moment to login and click "Accept as Solution" on one or more of them that helped. Thank you, Matt ... View more

Re: nifi 2.6 registry security scan results

by Master Mentor Master Mentor in Support Questions
‎12-17-2025 05:34 AM
‎12-17-2025 05:34 AM
@fy-test  Apache NiFi  is only going to be able to address CVEs found in the NiFi-Registry package lib directory files included with the distribution.  Any OS/System-level CVEs would need to be addressed by the owner of the platform on which the NIFi-Registry services is being used. You can find the Apache NiFi Security Reporting here: https://nifi.apache.org/documentation/security/ You'll find CVEs already addressed in NiFi and NiFi-Registry on the above page.  You'll also see how to report any new security vulnerabilities you may discover.   Please help our community grow. If you found any of the suggestions/solutions provided helped you with solving your issue or answering your question, please take a moment to login and click "Accept as Solution" on one or more of them that helped. Thank you, Matt ... View more

Re: nifi 1.11.4 node down

by Master Mentor Master Mentor in Support Questions
‎12-15-2025 01:44 PM
‎12-15-2025 01:44 PM
@Bern  Is your external Zookeeper installed on the same host as your NiFi?   If so, the load your NiFi is putting on those nodes may contribute to the performance of your ZK.  The last Apache NiFi 1.x major release version if NiFi 1.28.  I recommend upgrading to this version.  You'll potentially need to make significant changes and updated to your Apache NiFi 1.x versions dataflows before they can be used in Apache NiFi 2.x.   Apache NiFi 1.28 is also new enough that it will produce the flow.json.gz format that is also used by Apache NiFi 2.x.   Please help our community grow. If you found any of the suggestions/solutions provided helped you with solving your issue or answering your question, please take a moment to login and click "Accept as Solution" on one or more of them that helped. Thank you, Matt ... View more

Re: Problem with nifi login Version 2.in Windows...

by Master Mentor Master Mentor in Support Questions
‎12-15-2025 01:37 PM
‎12-15-2025 01:37 PM
@Bern  The single-user-provider authentication login provider and Single-User-Authorizer are extremely basic and only intended for out-of-the-box Apache NiFi product evaluation.  Apache NiFi also generates simple self-signed certificates to support the secured connection over HTTPS.   For more robust security you should be using a different multi-user authentication provider like ldap-provider and a multi-user authorizer like the managed-authorizer.  You should also generate signed certificates.  The Self-signed certificates generated by NiFi will eventually expire. Reference: User Authentication Multi-Tenant Authorization   Please help our community grow. If you found any of the suggestions/solutions provided helped you with solving your issue or answering your question, please take a moment to login and click "Accept as Solution" on one or more of them that helped. Thank you, Matt ... View more

Re: NIFI API and Provenance info - Unable to get i...

by Explorer in Support Questions
‎12-11-2025 03:06 PM
‎12-11-2025 03:06 PM
Hi Matt, What I discovered is that when running nifi on windows 10 ( and possibly linux as well?), any passwords that have special characters like + or \ etc need to be converted to ascii I think it is.  so : /     becomes   %2F  +    becomes   %2B Once i did this, it worked OK. ... View more

Re: NiFi EnvokeHTTP - putting current date on HTTP...

by Visitor in Support Questions
‎12-09-2025 05:58 AM
‎12-09-2025 05:58 AM
Matt, After some digging I found that I could use an updateattribute processor.  In it I create two custom attributes: since_date ${now():format("yyyy-MM-dd")} since_date_1 ${now():toNumber():minus(86400000):format("yyyy-MM-dd")} Then later in the InvokeHTTP processor I can use the custom attributes in the url line: ... &since=${since_date}&until=${until_date}&earliest=true Even later I then learned those attributes can be created in the GenerateFlowfile processor or used directly in the url as the formula: ${now():format("yyyy-MM-dd")} which is along the lines of what you posted.  Thank you for the response. ... View more

Re: CFM 2.1.7 ( NIFI ) Could not open, give me err...

by Master Mentor Master Mentor in Support Questions
‎12-08-2025 05:19 AM
‎12-08-2025 05:19 AM
@Akram-Khalil  What do you see logged in the nifi-app.log when you attempt to access the NiFI UI? I don't think this is related to your ldap configuration, but I don't have your authorizers.xml or nifi.properties to verify your configuration setup. This exception is more related to authorization and not authentication.  It is  more likely related to missing "proxy user requests" authorization being granted to the NiFi node certificates. But this should be easy to resolve if enough information can be shared, which includes nifi-userlog output which will show the user client identity being denied authorization and the above mentioned configuration files. You can also file a Cloudera support ticket if you have a Cloudera support contract and this can be solved live over a call.  Please help our community grow. If you found any of the suggestions/solutions provided helped you with solving your issue or answering your question, please take a moment to login and click "Accept as Solution" on one or more of them that helped. Thank you, Matt ... View more

Re: Invoking Nifi rest api in Data Flow

by Visitor in Support Questions
‎12-06-2025 11:00 PM
‎12-06-2025 11:00 PM
Thanks for the replies! I ended up using the "https://${hostname(true)}:8443/nifi-api" endpoint in the InvokeHTTP processor. However, the DefaultSSLContext controller service that Data Flow comes out of the box with did not work due to trust issues.  ... View more
Contact Me
Online
Offline
Last Visited
‎12-20-2025 08:38 PM
Community Statistics
Member Since ‎07-30-2019 10:41 AM
Last Visited ‎12-20-2025 08:38 PM
Posts 3,406
Kudos received 1618