Security Properties
These properties pertain to various security features in NiFi. Many of these properties are covered in more detail in the Security Configuration section of this Administrator's Guide.
Property |
Description |
nifi.sensitive.props.key |
This is the password used to encrypt any sensitive property values that are configured in processors. By default, it is blank, but the system administrator should provide a value for it. It can be a string of any length, although the recommended minimum length is 10 characters. Be aware that once this password is set and one or more sensitive processor properties have been configured, this password should not be changed. |
nifi.sensitive.props.algorithm |
The algorithm used to encrypt sensitive properties. The default value is |
nifi.sensitive.props.provider |
The sensitive property provider. The default value is |
nifi.sensitive.props.additional.keys |
The comma separated list of properties in |
nifi.security.keystore* |
The full path and name of the keystore. It is blank by default. |
nifi.security.keystoreType |
The keystore type. It is blank by default. |
nifi.security.keystorePasswd |
The keystore password. It is blank by default. |
nifi.security.keyPasswd |
The key password. It is blank by default. |
nifi.security.truststore* |
The full path and name of the truststore. It is blank by default. |
nifi.security.truststoreType |
The truststore type. It is blank by default. |
nifi.security.truststorePasswd |
The truststore password. It is blank by default. |
nifi.security.needClientAuth |
This indicates whether client authentication in the cluster protocol. It is blank by default. |
nifi.security.user.authorizer |
Specifies which of the configured Authorizers in the authorizers.xml file to use. By default, it is set to |
nifi.security.user.login.identity.provider |
This indicates what type of login identity provider to use. The default value is blank, can be set to the identifier from a provider in the file specified in |
nifi.security.ocsp.responder.url |
This is the URL for the Online Certificate Status Protocol (OCSP) responder if one is being used. It is blank by default. |
nifi.security.ocsp.responder.certificate |
This is the location of the OCSP responder certificate if one is being used. It is blank by default. |