Github user pepov commented on a diff in the pull request:
https://github.com/apache/nifi/pull/2866#discussion_r206873952
--- Diff: nifi-docker/dockerhub/README.md ---
@@ -124,6 +124,33 @@ volume to provide certificates on the host system to
the container instance.
-e LDAP_TLS_TRUSTSTORE_PASSWORD: ''
-e LDAP_TLS_TRUSTSTORE_TYPE: ''
+### Standalone Instance, kerberos
+In this configuration, the user will need to provide certificates and the
associated configuration information. Optionally,
+if the kerberos provider of interest is operating in kerberos modes,
certificates will additionally be needed.
--- End diff --
I would reword this to highlight that not Kerberos but NiFi requires mutual
TLS to allow any authentication provider to be configured (because Kerberos has
a method to preauthenticate using X.509 certificates but this isn't the case
here)
---
