TLS/SSL must be enabled before NiFi can support any form of user authentication. The primary mechanisms of authenticating to NiFi and NiFi Registry in a CDP Private Cloud Base cluster are Kerberos and LDAP.

NiFi also supports user authentication through a Security Assertion Markup Language (SAML) and OpenID Connect provider.