Hi Ricky, Sorry to hear you are having this issue. Is the keystore available on all nodes of the cluster? It appears from the log message that the keystore is not found during startup. To further debug, you can add the following line in bootstrap.conf to provide additional logging:
java.arg.15=-Djavax.net.debug=ssl,handshake Andy LoPresto [email protected] [email protected] PGP Fingerprint: 70EC B3E5 98A6 5A3F D3C4 BACE 3C6E F65B 2F7D EF69 > On Nov 2, 2016, at 2:25 PM, Ricky Saltzer <[email protected]> wrote: > > Hey all - > > I'm using NiFi 1.0 and I'm having an issue using secure mode with a local > key store while in clustered mode. If I set the node in clustered mode, and > also provide a valid keystore, I receive a KeyStoreException [1]. If I set > the configuration to not use clustered mode, NiFi will start up fine with > the provided key store. Am I supposed to be storing this key store in > Zookeeper somewhere? > > > [1] > > > Caused by: java.security.KeyStoreException: not found > > > at java.security.KeyStore.getInstance(KeyStore.java:839) > ~[na:1.8.0_11] > > at > org.apache.nifi.io.socket.SSLContextFactory.<init>(SSLContextFactory.java:61) > ~[nifi-socket-utils-1.0.0.jar:1.0.0] > > at > org.apache.nifi.cluster.protocol.spring.ServerSocketConfigurationFactoryBean.getObject(ServerSocketConfigurationFactoryBean.java:45) > ~[nifi-framework-cluster-protocol-1.0.0.jar:1.0.0] > > at > org.apache.nifi.cluster.protocol.spring.ServerSocketConfigurationFactoryBean.getObject(ServerSocketConfigurationFactoryBean.java:30) > ~[nifi-framework-cluster-protocol-1.0.0.jar:1.0.0] > > at > org.springframework.beans.factory.support.FactoryBeanRegistrySupport.doGetObjectFromFactoryBean(FactoryBeanRegistrySupport.java:168) > ~[spring-beans-4.2.4.RELEASE.jar:4.2.4.RELEASE] > > ... 69 common frames omitted > > Caused by: java.security.NoSuchAlgorithmException: KeyStore not available > > at sun.security.jca.GetInstance.getInstance(GetInstance.java:159) > ~[na:1.8.0_11] > > at java.security.Security.getImpl(Security.java:695) ~[na:1.8.0_11] > > at java.security.KeyStore.getInstance(KeyStore.java:836) > ~[na:1.8.0_11] > > ... 73 common frames omitted
signature.asc
Description: Message signed with OpenPGP using GPGMail
