You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@nifi.apache.org by "Andy LoPresto (JIRA)" <ji...@apache.org> on 2018/08/03 03:22:00 UTC

[jira] [Updated] (NIFI-5476) Enable TLS Toolkit (standalone) to sign certificates with external CA certificate

     [ https://issues.apache.org/jira/browse/NIFI-5476?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Andy LoPresto updated NIFI-5476:
--------------------------------
    Summary: Enable TLS Toolkit (standalone) to sign certificates with external CA certificate  (was: Enable TLS Toolkit to sign certificates with external CA certificate)

> Enable TLS Toolkit (standalone) to sign certificates with external CA certificate
> ---------------------------------------------------------------------------------
>
>                 Key: NIFI-5476
>                 URL: https://issues.apache.org/jira/browse/NIFI-5476
>             Project: Apache NiFi
>          Issue Type: Improvement
>          Components: Security, Tools and Build
>    Affects Versions: 1.7.1
>            Reporter: Andy LoPresto
>            Assignee: Andy LoPresto
>            Priority: Major
>              Labels: certificate, pem, pkcs1, pkcs8, pki, security, tls, tls-toolkit
>
> The TLS Toolkit can sign certificates using a public certificate and private key generated and signed elsewhere by injecting them into the {{nifi-cert.pem}} and {{nifi-key.key}} files as long as they are in the proper format and self-signed. The toolkit should be enhanced to handle PKCS #8 formatted private keys (in addition to the PKCS #1 formatted keys it handles now) and to allow for non self-signed certificates. 
> To verify this, use certificates generated by [TinyCert|https://tinycert.org].  



--
This message was sent by Atlassian JIRA
(v7.6.3#76005)