...
For Mac, https://kylo.readthedocs.io/en/v0.10.0/security/ConfigureNiFiWithSSL.html has instructions on how to tell your browser to trust this self-signed certificate. TODO: add instructions for Linux and Windows, as wellOn Firefox/Windows, follow these steps: https://support.globalsign.com/digital-certificates/digital-certificate-installation/install-client-digital-certificate-firefox-windows. On Firefox/Linux, the steps are similar; the View Certificates dialog is at Preferences → Privacy & Security (scroll to the bottom). After you have added the CN=minifi_OU=NIFI.p12
client certificate under Your Certificates (enter the contents of CN=minifi_OU=NIFI.password
when prompted), and you try to access https://<hostname>:9443/nifi/, you will still get a "Potential Security Risk Ahead" warning about the certificate, but now you can click Advanced → Accept the Risk and Continue (you only need to do this the first time).
If everything is OK so far, then configure MiNiFi to use the certificate:
...