Hi, If tls-toolkit was used to generate certificates, then there should be server-1 and server-2 directories created and each contains keystore.jks and truststore.jks.
``` sudo bash ./tls-toolkit.sh standalone -n 'server-1,server-2' -C 'CN=demo, OU=nifi' -O -o ../security_output ``` Please check following configurations in nifi.properties file to see if the generated keystore and truststore are specified correctly: nifi.security.keystore nifi.security.keystoreType nifi.security.keystorePasswd nifi.security.keyPasswd nifi.security.truststore nifi.security.truststoreType nifi.security.truststorePasswd Thanks, Koji On Thu, Feb 22, 2018 at 4:13 PM, yi <[email protected]> wrote: > Hi there, > > sticking my nose in as I have the same issue! > > slightly different to Nishant, but here's my settings: > > On the RPG instance side > > # Site to Site properties > nifi.remote.input.host= > nifi.remote.input.secure=true > nifi.remote.input.socket.port=8899 > nifi.remote.input.http.enabled=true > nifi.remote.input.http.transaction.ttl=30 sec > > # web properties # > nifi.web.war.directory=./lib > nifi.web.http.host= > nifi.web.http.port= > nifi.web.http.network.interface.default= > nifi.web.https.host=localhost > nifi.web.https.port=8443 > nifi.web.https.network.interface.default= > nifi.web.jetty.working.directory=./work/jetty > nifi.web.jetty.threads=200 > > On the "server" side > # Site to Site properties > nifi.remote.input.host=<server instance public IP> > nifi.remote.input.secure=true > nifi.remote.input.socket.port=8899 > nifi.remote.input.http.enabled=false > nifi.remote.input.http.transaction.ttl=30 sec > > # web properties # > nifi.web.war.directory=./lib > nifi.web.http.host= > nifi.web.http.port= > nifi.web.http.network.interface.default= > nifi.web.https.host= > nifi.web.https.port=8443 > nifi.web.https.network.interface.default= > nifi.web.jetty.working.directory=./work/jetty > nifi.web.jetty.threads=200 > > > ---- > > Any guidance is appreciated! > > Thank you > > > > -- > Sent from: http://apache-nifi-developer-list.39713.n7.nabble.com/
