You are viewing a plain text version of this content. The canonical link for it is here.

Posted to jira@kafka.apache.org by "Alexey Kashavkin (Jira)" <ji...@apache.org> on 2021/07/09 16:05:00 UTC

[jira] [Created] (KAFKA-13055) Security without JAAS file

Alexey Kashavkin created KAFKA-13055:
----------------------------------------

             Summary: Security without JAAS file
                 Key: KAFKA-13055
                 URL: https://issues.apache.org/jira/browse/KAFKA-13055
             Project: Kafka
          Issue Type: Bug
          Components: security
            Reporter: Alexey Kashavkin


I'm setting up kafka security with multiple listeners. Listener for broker works as plaintext and I don't want to use authentication for them. My cluster has configuration: 
{code:bash}
listeners=BROKERS://:9091,CLIENTS://:9092,CLIENTS-NOSSL://:9093inter.broker.listener.name=BROKERS
sasl.enabled.mechanisms=SCRAM-SHA-256listener.security.protocol.map=BROKERS:PLAINTEXT,CLIENTS:SASL_SSL,CLIENTS-NOSSL:SASL_PLAINTEXT
{code}
For clients, I want use SCRAM and only for them (not for brokers). But when I start broker, I see following message in log:
{code:bash}
ERROR [KafkaServer id=0] Fatal error during KafkaServer startup. Prepare to shutdown (kafka.server.KafkaServer)
java.lang.IllegalArgumentException: Could not find a 'KafkaServer' or 'clients.KafkaServer' entry in the JAAS configuration. System property 'java.security.auth.login.config' is not set
{code}
Why is this file so need, if I don't use authentication for brokers and SCRAM mechanism stores credentials in zookeeper? I didn't find any information about it in [docs|http://kafka.apache.org/documentation/#security].



--
This message was sent by Atlassian Jira
(v8.3.4#803005)