This example demonstrates Nginx reverse proxy configurations. If the client nor Nginx does NOT provide any client certificate, NiFi will respond with a login screen.
Nifi has to be configured to use an identity provider for username/password login. This blog post might be helpful to do so, it uses LDAP authentication provider. http://ijokarumawak.github.io/nifi/2016/11/15/nifi-auth/#how-to-use-ldap-to-authn-requests