nifi-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Andre <andre-li...@fucs.org>
Subject Fwd: Large scale Secure MiNiFi deployments
Date Wed, 07 Dec 2016 06:22:23 GMT
Devs,

Following up on this message I posted on Users, I have raised the following
Feature Proposal so we can cater for controlled access of MiNiFi agents
using exist, without creating too much overhead around access policy
management.

https://cwiki.apache.org/confluence/display/NIFI/Feature+proposal+-+Trust+based+MiNiFi+identification+and+authorization

While the primary use is MiNiFi, to certain extent the feature suggestion
is VERY similar to the anonymous roles we granted via
"nifi.security.anonymous.authorities"  back in the olden days of 0.x
(albeit a bit more granular).

Any thoughts?

Cheers



---------- Forwarded message ----------
From: Andre <andre-lists@fucs.org>
Date: Wed, Dec 7, 2016 at 8:40 AM
Subject: Large scale Secure MiNiFi deployments
To: users@nifi.apache.org


All,

Is anyone else using a large number of MiNiFi agents together with secure
Site to Site?

How are you managing the authorization policy so that MiNiFi agents can
connect to the remote process groups ports?

Cheers

Mime
  • Unnamed multipart/alternative (inline, None, 0 bytes)
View raw message