CODEWITHSUNDEEP
apache-nifi
Pramod S
Pramod S

Reputation: 15

NiFi 1.3.X Secure Cluster Setup Issue: HTTPS Wrong Hostname wrong should be: <my.ip.address>

I have followed these articles (among others) to set up the secure cluster:

Apache NiFi 1.0.0 - Authorization and Multi-Tenancy

But bellow error I have attached

Error of nifi secure cluster

nifi.properties 

# Site to Site properties 
nifi.remote.input.host=nifibizruntime.com 
nifi.remote.input.secure=true 
nifi.remote.input.socket.port=10443 
nifi.remote.input.http.enabled=true 
nifi.remote.input.http.transaction.ttl=30 sec 
# web properties 
nifi.web.war.directory=./lib 
nifi.web.http.host= 
nifi.web.http.port= 
nifi.web.http.network.interface.default= 
nifi.web.https.host=nifibizruntime.com 
nifi.web.https.port=9443 
nifi.web.https.network.interface.default= 
nifi.web.jetty.working.directory=./work/jetty 
nifi.web.jetty.threads=200

The error in nifi-app.log file:

com.sun.jersey.api.client.ClientHandlerException: java.io.IOException: HTTPS hostname wrong: should be <XXX.XXX.1.XX> 
    at com.sun.jersey.client.urlconnection.URLConnectionClientHandl‌​er.handle(URLConnect‌​ionClientHandler.jav‌​a:155) 
    at com.sun.jersey.api.client.Client.handle(Client.java:652)
    ...

Upvotes: 0

Views: 1046

Answers (1)

daggett
daggett

Reputation: 28599

seems something wrong with your certificate in keystore and/or in truststore.

if you connecting your server by hostname the certificate must be provided for the hostname.

if you use a java keytool to generate primary certificate, you can specify alternative host or ip for your certificate by using -ext SAN=dns:myhostname,ip:1.2.3.4 parameter

Upvotes: 1

Related Questions