You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@nifi.apache.org by "Swaraj Shekhar (Jira)" <ji...@apache.org> on 2021/11/01 22:24:00 UTC

[jira] [Commented] (NIFI-7819) Add Zookeeper client TLS (external zookeeper) for cluster state management

    [ https://issues.apache.org/jira/browse/NIFI-7819?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17437040#comment-17437040 ] 

Swaraj Shekhar commented on NIFI-7819:
--------------------------------------

After this change, do we have any way to connect to external zookeeper in non-TLS mode as well?

> Add Zookeeper client TLS (external zookeeper) for cluster state management
> --------------------------------------------------------------------------
>
>                 Key: NIFI-7819
>                 URL: https://issues.apache.org/jira/browse/NIFI-7819
>             Project: Apache NiFi
>          Issue Type: Sub-task
>    Affects Versions: 1.12.0
>            Reporter: Nathan Gough
>            Assignee: Nathan Gough
>            Priority: Major
>              Labels: security, tls, zookeeper
>             Fix For: 1.13.0
>
>
> When NiFi is configured to use an external Zookeeper, configuration on the NiFi side should allow cluster state management to use TLS. If configured with TLS, it should not allow any connections/communication to operate unsecured (an all or nothing approach). 
> This ticket, in combination with NIFI-7115, should allow NiFi to completely use an external Zookeeper securely.



--
This message was sent by Atlassian Jira
(v8.3.4#803005)