You are viewing a plain text version of this content. The canonical link for it is here.
Posted to issues@nifi.apache.org by "Andy LoPresto (JIRA)" <ji...@apache.org> on 2018/08/03 03:22:00 UTC
[jira] [Updated] (NIFI-5476) Enable TLS Toolkit (standalone) to
sign certificates with external CA certificate
[ https://issues.apache.org/jira/browse/NIFI-5476?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Andy LoPresto updated NIFI-5476:
--------------------------------
Summary: Enable TLS Toolkit (standalone) to sign certificates with external CA certificate (was: Enable TLS Toolkit to sign certificates with external CA certificate)
> Enable TLS Toolkit (standalone) to sign certificates with external CA certificate
> ---------------------------------------------------------------------------------
>
> Key: NIFI-5476
> URL: https://issues.apache.org/jira/browse/NIFI-5476
> Project: Apache NiFi
> Issue Type: Improvement
> Components: Security, Tools and Build
> Affects Versions: 1.7.1
> Reporter: Andy LoPresto
> Assignee: Andy LoPresto
> Priority: Major
> Labels: certificate, pem, pkcs1, pkcs8, pki, security, tls, tls-toolkit
>
> The TLS Toolkit can sign certificates using a public certificate and private key generated and signed elsewhere by injecting them into the {{nifi-cert.pem}} and {{nifi-key.key}} files as long as they are in the proper format and self-signed. The toolkit should be enhanced to handle PKCS #8 formatted private keys (in addition to the PKCS #1 formatted keys it handles now) and to allow for non self-signed certificates.
> To verify this, use certificates generated by [TinyCert|https://tinycert.org].
--
This message was sent by Atlassian JIRA
(v7.6.3#76005)