You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@lucene.apache.org by "Jörn Franke (JIRA)" <ji...@apache.org> on 2019/08/01 18:33:00 UTC

[jira] [Commented] (SOLR-7893) Document ZooKeeper SSL support

    [ https://issues.apache.org/jira/browse/SOLR-7893?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16898264#comment-16898264 ] 

Jörn Franke commented on SOLR-7893:
-----------------------------------

I am little bit blocked, because it seems that ZooKeeper does not seem to support Kerberos Authentication when using SSL on the client and/or Quorum level. I depend on that because I dont have at the moment a test environment with X509 authentication and ACLs (would that even work with Solr?).

See also: https://issues.apache.org/jira/browse/ZOOKEEPER-3482

> Document ZooKeeper SSL support
> ------------------------------
>
>                 Key: SOLR-7893
>                 URL: https://issues.apache.org/jira/browse/SOLR-7893
>             Project: Solr
>          Issue Type: Sub-task
>          Components: security
>            Reporter: Jan Høydahl
>            Assignee: Jan Høydahl
>            Priority: Major
>              Labels: ssl, zookeeper
>
> Once ZooKeeper supports SSL properly, Solr should start using it for all communication. See comments in https://cwiki.apache.org/confluence/display/solr/Enabling+SSL
> {quote}
> ZooKeeper does not support encrypted communication with clients like Solr.  There are several related JIRA tickets where SSL support is being planned/worked on: ZOOKEEPER-235; ZOOKEEPER-236; ZOOKEEPER-733; and  ZOOKEEPER-1000.
> {quote}



--
This message was sent by Atlassian JIRA
(v7.6.14#76016)

---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@lucene.apache.org
For additional commands, e-mail: dev-help@lucene.apache.org