Hello, For access to data, because it’s considered more sensitive than the flow definition, both the user and the nifi node accessing the data must be granted permissions to view and modify data. Did you give the nodes permissions to view and modify data?
Also moving this from security@ to users@ mailing list, as this is more of a use-based question. The security@ mailing list should be used for sensitive topics such as potential vulnerabilities, etc. Thanks Mark Sent from my iPhone On Nov 22, 2022, at 4:58 AM, lemontree <715733...@qq.com> wrote: Hello we have secured Nifi cluster in 1.1.7 with 3 nodes. When we click to list or empty queue on connection, there is error message Insufficient Permissions Node 192.168.106.5:9443 is unable to fulfill this request due to: Unable to modify the data for Processor with ID 682706ca-08e4-3d90-9b6a-5f845573299f. Contact the system administrator. Contact the system administrator. the error request: 1. 请求 URL: https://192.168.106.5:9443/nifi-api/flowfile-queues/f7b68394-8e95-3e87-902f-90a74d3d8a42/listing-requests 2. 请求方法: POST 3. 状态代码: 403 Forbidden We grant user policy to view and modify data, but no success. Admin user got the same error.message we use the managed-authorizer configed as this : nifi.security.user.authorizer=managed-authorizer; very strangely, other action policy work normally, such as create&del processor... Regards
