Veda Kadam created NIFI-7674: -------------------------------- Summary: Toolkit diagnostic for Cluster configuration Key: NIFI-7674 URL: https://issues.apache.org/jira/browse/NIFI-7674 Project: Apache NiFi Issue Type: Sub-task Components: Configuration Management, Tools and Build Affects Versions: 1.11.4 Reporter: Veda Kadam
Refer NIFI-7673 for problems addressed. # Cluster TLS configuration verification # Priority 1 # Addresses A, B, C, D, J, K # Description: Verifies all nodes in the cluster have the ability to verify and communicate with each other (TLS only) # Steps # Run on each node # Start simple Jetty server using keystore & truststore from nifi.properties on each node (using API port) # Possible to run listening on multiple ports (API, CC, S2S, LB) # Connect to embedded or external ZK and retrieve all cluster node hostnames # Attempt to ping NiFi hostnames to resolve DNS/validate firewall # Make simple request from each node to each other node and verify mTLS # PKIX path building # Cipher suite availability # TLS protocol version availability # Ports open -- This message was sent by Atlassian Jira (v8.3.4#803005)