Please bear with me - its a bit complicated.
The high level goal is to connect NIFI to an Oracle db service - but can only use Kerberos for authentication.
We are running Apache NIFI 1.9.2 and trying to connect to Oracle (using driver version 12.1) via a DBCPConnectionPool controller service. I have configured a KeytabCredentialService controller service and reference it in my DBCP controller service.
I am setting the Oracle driver class name to be "oracle.jdbc.driver.OracleDriver". Full configuration settings here.
When we enable the associated ExecuteSQL processor - we get an Oracle authentication error message.
ORA-01017 - invalid username/password; logon denied.
After some troubleshooting - it seems that the Oracle driver wrapped within NIFI's DBCP service is not even trying to use Kerberos at all.
Outside of NIFI, programmatically we would normally need to add in driver property CONNECTION_PROPERTY_THIN_NET_AUTHENTICATION_SERVICES to "turn on" the kerberos authentication feature, but there is no such option available to us when using NIFI's DBCP Controller service.
Does anyone have any ideas on how we might be able to properly enable Kerberos authentication on the Oracle driver via NIFI's DBCP controller service?
Any help or direction given will be greatly appreciated?
DBCPConnectionPool? Another option is to define a dynamic property on the controller service with the property name and value. These dynamic properties are evaluated at configuration time and injected into the connection by NiFi. - Andy