You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@nifi.apache.org by "Andy LoPresto (JIRA)" <ji...@apache.org> on 2018/08/01 01:56:00 UTC

[jira] [Created] (NIFI-5476) Enable TLS Toolkit to sign certificates with external CA certificate

Andy LoPresto created NIFI-5476:
-----------------------------------

             Summary: Enable TLS Toolkit to sign certificates with external CA certificate
                 Key: NIFI-5476
                 URL: https://issues.apache.org/jira/browse/NIFI-5476
             Project: Apache NiFi
          Issue Type: Improvement
          Components: Security, Tools and Build
    Affects Versions: 1.7.1
            Reporter: Andy LoPresto
            Assignee: Andy LoPresto


The TLS Toolkit can sign certificates using a public certificate and private key generated and signed elsewhere by injecting them into the {{nifi-cert.pem}} and {{nifi-key.key}} files as long as they are in the proper format and self-signed. The toolkit should be enhanced to handle PKCS #8 formatted private keys (in addition to the PKCS #1 formatted keys it handles now) and to allow for non self-signed certificates. 

To verify this, use certificates generated by [TinyCert|https://tinycert.org].  



--
This message was sent by Atlassian JIRA
(v7.6.3#76005)