ADLSCredentialsControllerService

Description:

Defines credentials for ADLS processors.

Additional Details...

Tags:

azure, microsoft, cloud, storage, adls, credentials

Properties:

In the list below, the names of required properties appear in bold. Any other properties (not in bold) are considered optional. The table also indicates any default values, whether a property supports the NiFi Expression Language, and whether a property is considered "sensitive", meaning that its value will be encrypted. Before entering a value in a sensitive property, ensure that the nifi.properties file has an entry for the property nifi.sensitive.props.key.

NameDefault ValueAllowable ValuesDescription
Storage Account NameThe storage account name.
Sensitive Property: true
Endpoint Suffixdfs.core.windows.netStorage accounts in public Azure always use a common FQDN suffix. Override this endpoint suffix with a different suffix in certain circumstances (like Azure Stack or non-public Azure regions).
Supports Expression Language: true (will be evaluated using variable registry only)
Storage Account KeyThe storage account key. This is an admin-like password providing access to every container in this account. It is recommended one uses Shared Access Signature (SAS) token instead for fine-grained control with policies.
Sensitive Property: true
SAS TokenShared Access Signature token, including the leading '?'. Specify either SAS token (recommended) or Account Key. There are certain risks in allowing the SAS token to be stored as a flowfile attribute. While it does provide for a more flexible flow by allowing the SAS token to be fetched dynamically from a flowfile attribute, care must be taken to restrict access to the event provenance data (e.g., by strictly controlling the policies governing provenance for this processor). In addition, the provenance repositories may be put on encrypted disk partitions.
Sensitive Property: true
Supports Expression Language: true (will be evaluated using flow file attributes and variable registry)
Use Azure Managed Identityfalse
  • true
  • false
Choose whether or not to use the managed identity of Azure VM/VMSS
Service Principal Tenant IDTenant ID of the Azure Active Directory hosting the Service Principal. The property is required when Service Principal authentication is used.
Sensitive Property: true
Service Principal Client IDClient ID (or Application ID) of the Client/Application having the Service Principal. The property is required when Service Principal authentication is used.
Sensitive Property: true
Service Principal Client SecretPassword of the Client/Application. The property is required when Service Principal authentication is used.
Sensitive Property: true

State management:

This component does not store state.

Restricted:

This component is not restricted.

System Resource Considerations:

None specified.