Configuring TLS/SSL encryption manually for NiFi and NiFi Registry
If you do not want to enable Auto-TLS because for example, you need to use your own enterprise-generated certificates, you can manually enable TLS for NiFi and NiFi Registry.
Ensure you have set up TLS for Cloudera Manager:
- Review the requirements and recommendations for the certificates. See TLS Certificate Requirements and Recommendations.
- Generate the TLS certificates and configure Cloudera Manager. See Manually Configuring TLS for Cloudera Manager.
From Cloudera Manager, click
Click the Configuration tab.
sslin the Search field.The TLS/SSL Security properties for NiFi appear.
- Edit the TLS/SSL Security properties.
- Click Save Changes.
- Restart the NiFi service.
and repeat these steps to configure the TLS/SSL Security
properties for NiFi Registry.
If a property is not exposed in Cloudera Manager, use a safety valve to override the associated value.