Backing up NiFi keystore and truststore settings

If your CFM installation from which you are upgrading is TLS enabled, use the Encrypt Config tools to back up your NiFi keystore and truststore settings. You will set these values in Cloudera Manager once you complete the upgrade.

  • You have turned of TLS regeneration.
  • If JAVA_HOME is not set, you should set it before proceeding. The default path is /usr/java/default.
  1. Locate the script from the NiFi Toolkit.
    The default location is /opt/cloudera/parcels. You can find your location by running:
    find /opt/cloudera/parcels -name ''
  2. Find the latest NiFi process directory:
    find /var/run/cloudera-scm-agent/process/ -name | grep "NIFI_NODE"
  3. Run
    -b <path_to_nifi_proc_dir>/bootstrap.conf 
    -n <path_to_nifi_proc_dir>/

    For example:

    -b /run/cloudera-scm-agent/182-NIFI_NODE.../bootstrap.conf 
    -n /run/cloudera-scm-agent/182-NIFI_NODE.../
  4. Back up the output.

The output will be similar to:


Once you have completed this step for NiFi, do the same for NiFi Registry.