You are viewing a plain text version of this content. The canonical link for it is here.
Posted to user@zookeeper.apache.org by Andor Molnar <an...@apache.org> on 2021/10/21 23:26:04 UTC
Re: Kafka connect to zookeeper - Secure connection using cert and
keyfile
Hi John,
I'm not familiar with how Kafka sets up the Zookeeper client
internally. Does it support TLS encryption already? Which version of
Kafka is this?
You need to put your certificates into Java keystores and pass the
location to ZK client which Kafka should do when TLS is enabled.
Best,
Andor
On Tue, 2021-08-17 at 07:42 +0800, john mark wrote:
> Hi,
>
> I am running this command to test my zookeeper SSL connection:
>
> openssl s_client -showcerts -connect 55.55.55.55:2280 -CAfile
> /certs/ca-chain.cert.pem -cert
> /root/ca/intermediate/certs/intermediate.cert.pemĀ -key
> /root/ca/intermediate/private/intermediate.key.pem
>
> It works just fine so that's for openssl s_client to connect to
> zookeeper.
>
> How can I connect my Kafka server using -cert and -key option like
> the
> command mentioned above?
>
> I need to use that to avoid getting SSL errors because I cannot use
> ssl.clientAuth
> in my zookeeper config that is because I have a version 3.5.5 only
> (does
> not support ssl.clientAuth).
>
> Any ideas on how can I connect my Kafka server using -cert and -key
> option?
>
> Best regards,
>
> John Mark Causing