Thanks. I got it. The key was to get the correct key in the keystore. I just
imported the PKCS12 file into the keystore and all is well.
Sent from my iPhone
> On Oct 20, 2017, at 9:23 AM, Aldrin Piri wrote:
>
> I am a far cry from a cert pro, but it looks like the results are what I
> would a
I am a far cry from a cert pro, but it looks like the results are what I
would anticipate given your reuse of nifi_server.key.pem in your JKS. I
don't think you are far away from your intended setup and should be able to
create another "user" cert for your minifi instance(s), as you had for your
U
Hi Michael,
You would want to generate a different certificate for MiNiFi (using
the same CA) and put it in a different keystore like
minifi_server.key.pem.
You would then need to create a user in NiFi for the DN of the MiNiFi
certificate, to represent MiNiFi as a user and assign proper
permissio
Hi,
We have been working on security our nifi/minifi setup, and we have been
marginally successful, but there are a few things I can't seem to figure
out. For our setup we have:
CA: created in openssl, intermediate issuer created as well; chain cert
created
NIFI Cert: issued by the intermediate
U