@MattWho  We tried two different bucket settings: one publicly visible, the other not We are logged into NiFi and to NiFi Registry with the NiFi Admin user. Could this cause a problem?    The NiFI Controller Settings look like this:              ... View more

Thank you @MattWho    Our whole setup is very basic so far. We are working with the admin user and authenticate with the generated client certificates (nifi toolkit). We have no additional user authorization in place yet. Therefore also no identity mapping patterns.  Also used the exact domain name as user CN.   When trying to perform version control, the nifi registry log gives the requested resource followed by a repetition of these messages:    IdentityFilter Attempting to extract user credentials using X509IdentityProvider IdentityFilter Adding credentials claim to SecurityContext to be authenticated. Credentials extracted by X509IdentityProvider: AuthenticationRequest{username='CN=nifi_admin, OU=NiFi', credentials=[PROTECTED], details=org.apache.nifi.registry.web.security.authentication.x509.X509AuthenticationRequestDetails@3938d0ef} IdentityFilter Credentials already extracted for [org.apache.nifi.registry.web.security.authentication.AuthenticationRequestToken$1@138d2a4], skipping credentials extraction filter using JwtIdentityProvider AnonymousIdentityFilter SecurityContextHolder not populated with anonymous token, as it already contained: 'AuthenticationRequest{username='CN=nifi_admin, OU=NiFi', credentials=[PROTECTED], details=org.apache.nifi.registry.web.security.authentication.x509.X509AuthenticationRequestDetails@1a175871}' ResourceAuthorizationFilter Request filter authorization check is not required for this HTTP Method on this resource. Allowing request to proceed. An additional authorization check might be performed downstream of this filter. ProxyChainAuthorizable Requested resource is /tenants     This is the only remarkable message but I don't see any obvious error. ... View more