[
https://issues.apache.org/jira/browse/NIFI-2654?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15665802#comment-15665802
]
ASF GitHub Bot commented on NIFI-2654:
--------------------------------------
Github user YolandaMDavis commented on the issue:
https://github.com/apache/nifi/pull/1216
@alopresto I was able to test encrypt-config update with the following
scenarios:
tested encryption using new -l flag along with -n, - b, and -p flags (no
migration). nifi.properties and login provider identity files encrypted
properties as expected. Master key appears as expected in bootstrap.con
tested encryption using -l, -n, and - b flag with migration of password
using -m -w. nifi.properties and login provider identity files encrypted as
expected. Master key appears as expected in bootstrap.conf
Also tested encrypted configurations with secured NiFi against OpenLDAP
(SIMPLE and TLS). In both scenarios NiFi was able to decrypt values and access
LDAP for authentication as needed.
+1
Thanks @alopresto! Will merge this in shortly
> Encrypted configs should handle login identity provider configs
> ---------------------------------------------------------------
>
> Key: NIFI-2654
> URL: https://issues.apache.org/jira/browse/NIFI-2654
> Project: Apache NiFi
> Issue Type: Improvement
> Components: Configuration, Tools and Build
> Affects Versions: 1.0.0
> Reporter: Andy LoPresto
> Assignee: Andy LoPresto
> Labels: config, encryption, ldap, security
> Fix For: 1.1.0
>
>
> The encrypted configuration tool and internal logic to load unprotected
> values should handle sensitive values contained in the login identity
> providers (like LDAP Manager Password).
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
