You are viewing a plain text version of this content. The canonical link for it is here.
Posted to users@nifi.apache.org by John Burns <jz...@gmail.com> on 2016/01/01 22:22:50 UTC
Logging in as admin via HTTPS
Hi,
I have followed the instructions here
https://community.hortonworks.com/articles/7341/nifi-user-authentication-with-ldap.html
and here
https://nifi.apache.org/docs/nifi-docs/html/administration-guide.html
and have integrated LDAP with NiFi via HTTPS. This all works.
The problem I have is that I cannot see how/what procedure to use when
logging in as admin. The admin guide mentions
<users>
<user dn="cn=John Smith,ou=people,dc=example,dc=com">
<role name="ROLE_ADMIN"/>
</user>
</users>
but I cannot see what username/password to supply to my nifi HTTPS
instance. I am probably missing something very obvious but any help would
be appreciated.
Thanks
John
Re: Logging in as admin via HTTPS
Posted by John Burns <jz...@gmail.com>.
Hi Matt
Thank you very much, 100% clear and problem solved!
Happy New Year.
John
On Fri, Jan 1, 2016 at 9:51 PM, Matt Gilman <ma...@gmail.com> wrote:
> John,
>
> The LDAP integration handles the user authentication. The
> authorized-users.xml file will handle the user authorization. If your
> directory server has an account with the DN
>
> cn=John Smith,ou=people,dc=example,dc=com
>
> and you log in as that user, NiFi will use that DN and look up the
> corresponding roles in the authorized-users.xml. These two concerns
> (authentication and authorization) have been decoupled and made extensible.
> The provided implementations supporting LDAP lookups and user roles stored
> in the local file.
>
> Let me know if that helps.
>
> Matt
>
> On Fri, Jan 1, 2016 at 4:22 PM, John Burns <jz...@gmail.com> wrote:
>
>> Hi,
>>
>> I have followed the instructions here
>>
>>
>> https://community.hortonworks.com/articles/7341/nifi-user-authentication-with-ldap.html
>>
>>
>> and here
>>
>> https://nifi.apache.org/docs/nifi-docs/html/administration-guide.html
>>
>> and have integrated LDAP with NiFi via HTTPS. This all works.
>>
>> The problem I have is that I cannot see how/what procedure to use when
>> logging in as admin. The admin guide mentions
>>
>> <users>
>> <user dn="cn=John Smith,ou=people,dc=example,dc=com">
>> <role name="ROLE_ADMIN"/>
>> </user>
>> </users>
>>
>> but I cannot see what username/password to supply to my nifi HTTPS
>> instance. I am probably missing something very obvious but any help would
>> be appreciated.
>>
>> Thanks
>>
>> John
>>
>
>
Re: Logging in as admin via HTTPS
Posted by Matt Gilman <ma...@gmail.com>.
John,
The LDAP integration handles the user authentication. The
authorized-users.xml file will handle the user authorization. If your
directory server has an account with the DN
cn=John Smith,ou=people,dc=example,dc=com
and you log in as that user, NiFi will use that DN and look up the
corresponding roles in the authorized-users.xml. These two concerns
(authentication and authorization) have been decoupled and made extensible.
The provided implementations supporting LDAP lookups and user roles stored
in the local file.
Let me know if that helps.
Matt
On Fri, Jan 1, 2016 at 4:22 PM, John Burns <jz...@gmail.com> wrote:
> Hi,
>
> I have followed the instructions here
>
>
> https://community.hortonworks.com/articles/7341/nifi-user-authentication-with-ldap.html
>
>
> and here
>
> https://nifi.apache.org/docs/nifi-docs/html/administration-guide.html
>
> and have integrated LDAP with NiFi via HTTPS. This all works.
>
> The problem I have is that I cannot see how/what procedure to use when
> logging in as admin. The admin guide mentions
>
> <users>
> <user dn="cn=John Smith,ou=people,dc=example,dc=com">
> <role name="ROLE_ADMIN"/>
> </user>
> </users>
>
> but I cannot see what username/password to supply to my nifi HTTPS
> instance. I am probably missing something very obvious but any help would
> be appreciated.
>
> Thanks
>
> John
>