John, The LDAP integration handles the user authentication. The authorized-users.xml file will handle the user authorization. If your directory server has an account with the DN
cn=John Smith,ou=people,dc=example,dc=com and you log in as that user, NiFi will use that DN and look up the corresponding roles in the authorized-users.xml. These two concerns (authentication and authorization) have been decoupled and made extensible. The provided implementations supporting LDAP lookups and user roles stored in the local file. Let me know if that helps. Matt On Fri, Jan 1, 2016 at 4:22 PM, John Burns <[email protected]> wrote: > Hi, > > I have followed the instructions here > > > https://community.hortonworks.com/articles/7341/nifi-user-authentication-with-ldap.html > > > and here > > https://nifi.apache.org/docs/nifi-docs/html/administration-guide.html > > and have integrated LDAP with NiFi via HTTPS. This all works. > > The problem I have is that I cannot see how/what procedure to use when > logging in as admin. The admin guide mentions > > <users> > <user dn="cn=John Smith,ou=people,dc=example,dc=com"> > <role name="ROLE_ADMIN"/> > </user> > </users> > > but I cannot see what username/password to supply to my nifi HTTPS > instance. I am probably missing something very obvious but any help would > be appreciated. > > Thanks > > John >
