Kerberos Properties


Property	Description
`nifi.kerberos.krb5.file`*	The location of the krb5 file, if used. It is blank by default. At this time, only a single krb5 file is allowed to be specified per NiFi instance, so this property is configured here to support SPNEGO and service principals rather than in individual Processors. If necessary the krb5 file can support multiple realms. Example: `/etc/krb5.conf`
`nifi.kerberos.service.principal`*	The name of the NiFi Kerberos service principal, if used. It is blank by default. Note that this property is for NiFi to authenticate as a client other systems. Example: `nifi/nifi.example.com` or `nifi/nifi.example.com@EXAMPLE.COM`
`nifi.kerberos.service.keytab.location`*	The file path of the NiFi Kerberos keytab, if used. It is blank by default. Note that this property is for NiFi to authenticate as a client other systems. Example: `/etc/nifi.keytab`
`nifi.kerberos.spnego.principal`*	The name of the NiFi Kerberos service principal, if used. It is blank by default. Note that this property is used to authenticate NiFi users. Example: `HTTP/nifi.example.com` or `HTTP/nifi.example.com@EXAMPLE.COM`
`nifi.kerberos.spnego.keytab.location`*	The file path of the NiFi Kerberos keytab, if used. It is blank by default. Note that this property is used to authenticate NiFi users. Example: `/etc/http-nifi.keytab`
`nifi.kerberos.spengo.authentication.expiration`*	The expiration duration of a successful Kerberos user authentication, if used. The default value is `12 hours`.