Hello all I now have a nifi instance able to connect to LDAP server, with valid certificates and so on.
But i'm unable to connect to Nifi UI, altough I have set myself as initial admin identity. My ldap full DN is set as initial admin identity <accessPolicyProvider> <identifier>file-access-policy-provider</identifier> <class>org.apache.nifi.authorization.FileAccessPolicyProvider</class> <propertyname="User Group Provider">ldap-user-group-provider</property> <propertyname="Authorizations File">./conf/authorizations.xml</property> <propertyname="Initial Admin Identity">uid=20008203,ou=people,ou=go-lm,o=corp.company.com</property> <propertyname="Legacy Authorized Users File"></property> <propertyname="Node Identity 1"></property> <propertyname="Node Group"></property> </accessPolicyProvider> And I'm a member of the group which is used to allow access <propertyname="Group Search Base">cn=GO-LM-ROLE-DATA-INGEST-ADMIN,ou=DATA-INGEST,ou=applicationRole,ou=role,ou=GO-LM,o=corp.company.com</property> <propertyname="Group Object Class">groupofuniquenames</property> <propertyname="Group Search Scope">SUBTREE</property> <propertyname="Group Search Filter"></property> <propertyname="Group Name Attribute">cn</property> <propertyname="Group Member Attribute">uniqueMember</property> <propertyname="Group Member Attribute - Referenced User Attribute"></property> </userGroupProvider> But, when i debug the StandardManagedAuthorizer code it seems the User object created from the authentication attempt has a different identifier than the initial admin. Is it possible ? And if so, how to configure Nifi to make sure the user obtained from a login has the same identifier than an existing one ? Thanks
