This one is quick. My experience with Java is fairly minimal, and I was looking for the correct method of importing a self-signed certificate into the Java keystore, mainly so NiFi would play nice with another server. Simple enough:
This is for Ubuntu 20.04 with OpenJDK 11, so there's a chance that the location is different on your distribution. You can also pass the following flags to Java so that it doesn't check revociation:
This also wouldn't be complete without describing the settings for the StandardRestrictedSSLContextService controller service on Apache NiFi. Keep in mind the default password is actually changeit by default.
Happy Java...ing? I don't know what Java people say to each other. It's the thought that counts.