Repository: nifi Updated Branches: refs/heads/master ef69fd61a -> 702a0dcf1
NIFI-3480 Fix incorrect Admin Guide documentation regarding anonymous access This closes #1512 Project: http://git-wip-us.apache.org/repos/asf/nifi/repo Commit: http://git-wip-us.apache.org/repos/asf/nifi/commit/702a0dcf Tree: http://git-wip-us.apache.org/repos/asf/nifi/tree/702a0dcf Diff: http://git-wip-us.apache.org/repos/asf/nifi/diff/702a0dcf Branch: refs/heads/master Commit: 702a0dcf17d9a6e1372935ef0363fe59bd216a65 Parents: ef69fd6 Author: Andrew Lim <[email protected]> Authored: Wed Feb 15 14:56:03 2017 -0500 Committer: Scott Aslan <[email protected]> Committed: Thu Feb 16 09:45:41 2017 -0500 ---------------------------------------------------------------------- nifi-docs/src/main/asciidoc/administration-guide.adoc | 8 ++------ 1 file changed, 2 insertions(+), 6 deletions(-) ---------------------------------------------------------------------- http://git-wip-us.apache.org/repos/asf/nifi/blob/702a0dcf/nifi-docs/src/main/asciidoc/administration-guide.adoc ---------------------------------------------------------------------- diff --git a/nifi-docs/src/main/asciidoc/administration-guide.adoc b/nifi-docs/src/main/asciidoc/administration-guide.adoc index f991cc3..b0831da 100644 --- a/nifi-docs/src/main/asciidoc/administration-guide.adoc +++ b/nifi-docs/src/main/asciidoc/administration-guide.adoc @@ -140,14 +140,10 @@ NiFi provides several different configuration options for security purposes. The |`nifi.security.keystoreType` | The type of Keystore. Must be either `PKCS12` or `JKS`. JKS is the preferred type, PKCS12 files will be loaded with BouncyCastle provider. |`nifi.security.keystorePasswd` | The password for the Keystore. |`nifi.security.keyPasswd` | The password for the certificate in the Keystore. If not set, the value of `nifi.security.keystorePasswd` will be used. -|`nifi.security.truststore` | Filename of the Truststore that will be used to authorize those connecting to NiFi. If not set, all who - attempt to connect will be provided access as the 'Anonymous' user. +|`nifi.security.truststore` | Filename of the Truststore that will be used to authorize those connecting to NiFi. A secured instance with no Truststore will refuse all incoming connections. |`nifi.security.truststoreType` | The type of the Truststore. Must be either `PKCS12` or `JKS`. JKS is the preferred type, PKCS12 files will be loaded with BouncyCastle provider. |`nifi.security.truststorePasswd` | The password for the Truststore. -|`nifi.security.needClientAuth` | Specifies whether or not connecting clients must authenticate themselves. Specifically this property is used - by the NiFi cluster protocol. If the Truststore properties are not set, this must be `false`. Otherwise, a value - of `true` indicates that nodes in the cluster will be authenticated and must have certificates that are trusted - by the Truststores. +|`nifi.security.needClientAuth` | Set to `true` to specify that connecting clients must authenticate themselves. This property is used by the NiFi cluster protocol to indicate that nodes in the cluster will be authenticated and must have certificates that are trusted by the Truststores. |================================================================================================================================================== Once the above properties have been configured, we can enable the User Interface to be accessed over HTTPS instead of HTTP. This is accomplished
