You are viewing a plain text version of this content. The canonical link for it is here.
Posted to issues@nifi.apache.org by "Bryan Rosander (JIRA)" <ji...@apache.org> on 2016/10/25 18:18:58 UTC

[jira] [Created] (NIFI-2943) tls-toolkit pkcs12 truststore 0 entries

Bryan Rosander created NIFI-2943:
------------------------------------

             Summary: tls-toolkit pkcs12 truststore 0 entries
                 Key: NIFI-2943
                 URL: https://issues.apache.org/jira/browse/NIFI-2943
             Project: Apache NiFi
          Issue Type: Bug
            Reporter: Bryan Rosander
            Priority: Minor


When pkcs12 is used by the tls-toolkit, the resulting truststore has no entries when inspected by the keytool and the tls-toolkit certificate authority certificate is not trusted by NiFi.

This seems to be due to the Java pkcs12 provider not supporting certificate entries:
http://stackoverflow.com/questions/3614239/pkcs12-java-keystore-from-ca-and-user-certificate-in-java#answer-3614405

The Bouncy Castle provider does seem to support certificates but we may not want to explicitly use that provider from within NiFi.



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)