You are viewing a plain text version of this content. The canonical link for it is here.

Posted to jira@kafka.apache.org by "zhu fangbo (JIRA)" <ji...@apache.org> on 2017/07/05 10:53:00 UTC

[jira] [Resolved] (KAFKA-5558) can not connect to the unsecure port after config SASL/PLAIN

     [ https://issues.apache.org/jira/browse/KAFKA-5558?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

zhu fangbo resolved KAFKA-5558.
-------------------------------
    Resolution: Fixed

this is not a bug

> can not connect to the unsecure port after config SASL/PLAIN
> ------------------------------------------------------------
>
>                 Key: KAFKA-5558
>                 URL: https://issues.apache.org/jira/browse/KAFKA-5558
>             Project: Kafka
>          Issue Type: Bug
>          Components: clients
>    Affects Versions: 0.10.1.1
>            Reporter: zhu fangbo
>
> Dear All, 
> I followed modifying sasl mechanism in a running cluster to set a cluster with one broker using SASL/PLAIN to authorize client. here are configurations：
> server config
> server.properties：
> listeners=PLAINTEXT://:9093,SASL_PLAINTEXT://:9094
> security.inter.broker.protocol=SASL_PLAINTEXT
> sasl.mechanism.inter.broker.protocol=PLAIN
> sasl.enabled.mechanisms=PLAIN
> authorizer.class.name = kafka.security.auth.SimpleAclAuthorizer
> super.users=User:admin
> kafka_server_jaas.conf：
> KafkaServer {
>     org.apache.kafka.common.security.plain.PlainLoginModule required
>     username="admin"
>     password="admin"
>     user_admin="admin"
>     user_alice="alice";
> };
> My producer configured with security.protocol=SASL_PLAINTEXT and correct jass.conf can work well when I connect to the secure port(9094)，but when I use the default security.protocol and connect to unsecure port(9093), the producer can not fetch metadata：
> DEBUG 17:18:10 kafka-producer-network-thread | producer-1 [NetworkClient] Sending metadata request {topics=[test]} to node -1
> WARN 17:18:10 kafka-producer-network-thread | producer-1 [NetworkClient] Error while fetching metadata with correlation id 0 : {test=UNKNOWN_TOPIC_OR_PARTITION}
> DEBUG 17:18:10 kafka-producer-network-thread | producer-1 [NetworkClient] Sending metadata request {topics=[test]} to node 1
> WARN 17:18:10 kafka-producer-network-thread | producer-1 [NetworkClient] Error while fetching metadata with correlation id 2 : {test=UNKNOWN_TOPIC_OR_PARTITION}
> Why the unsecure port can not be connected after config sasl authorization?



--
This message was sent by Atlassian JIRA
(v6.4.14#64029)