[
https://issues.apache.org/jira/browse/ZOOKEEPER-1045?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15347410#comment-15347410
]
Michael Han commented on ZOOKEEPER-1045:
----------------------------------------
[~rakeshr] Update on testing against latest (June05) patch: I set up a 3 node
cluster and verified these using manual testing and some in house automations:
# ZK works with default configuration (none SASL enabled on server or client.).
# ZK works with SASL + Digest (SASL server to server enabled, client to server
not enabled.).
# ZK not working with SASL + Kerberos (I am 90% certain I had a bad Kerberos
set up so this is not a real red alarm.).
Plan to verify:
# SASL + Digest (with both server to server and server to client enabled.).
# SASL + Kerberos (same as above.).
# Rolling upgrade.
> Quorum Peer mutual authentication
> ---------------------------------
>
> Key: ZOOKEEPER-1045
> URL: https://issues.apache.org/jira/browse/ZOOKEEPER-1045
> Project: ZooKeeper
> Issue Type: New Feature
> Components: server
> Reporter: Eugene Koontz
> Assignee: Rakesh R
> Priority: Critical
> Fix For: 3.4.9, 3.5.3
>
> Attachments: 0001-ZOOKEEPER-1045-br-3-4.patch,
> 1045_failing_phunt.tar.gz, ZK-1045-test-case-failure-logs.zip,
> ZOOKEEPER-1045-00.patch, ZOOKEEPER-1045-Rolling Upgrade Design Proposal.pdf,
> ZOOKEEPER-1045-br-3-4.patch, ZOOKEEPER-1045-br-3-4.patch,
> ZOOKEEPER-1045-br-3-4.patch, ZOOKEEPER-1045-br-3-4.patch
>
>
> ZOOKEEPER-938 addresses mutual authentication between clients and servers.
> This bug, on the other hand, is for authentication among quorum peers.
> Hopefully much of the work done on SASL integration with Zookeeper for
> ZOOKEEPER-938 can be used as a foundation for this enhancement.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
