[jira] [Resolved] (KAFKA-12528) kafka-configs.sh does not work while changing the sasl jaas configurations.

Thu, 22 Apr 2021 01:02:05 -0700 


     [ 
https://issues.apache.org/jira/browse/KAFKA-12528?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]

Chia-Ping Tsai resolved KAFKA-12528.
------------------------------------
    Resolution: Duplicate

see KAFKA-12530

> kafka-configs.sh does not work while changing the sasl jaas configurations.
> ---------------------------------------------------------------------------
>
>                 Key: KAFKA-12528
>                 URL: https://issues.apache.org/jira/browse/KAFKA-12528
>             Project: Kafka
>          Issue Type: Bug
>          Components: admin, core
>            Reporter: kaushik srinivas
>            Priority: Major
>
> We are trying to modify the sasl jaas configurations for the kafka broker 
> runtime using the dynamic config update functionality using the 
> kafka-configs.sh script. But we are unable to get it working.
> Below is our command:
> ./kafka-configs.sh --bootstrap-server localhost:9092 --entity-type brokers 
> --entity-name 59 --alter --add-config 'sasl.jaas.config=KafkaServer \{\n 
> org.apache.kafka.common.security.plain.PlainLoginModule required \n 
> username=\"test\" \n password=\"test\"; \n };'
>  
> command is exiting with error:
> requirement failed: Invalid entity config: all configs to be added must be in 
> the format "key=val".
>  
> we also tried below format as well:
> kafka-configs.sh --bootstrap-server localhost:9092 --entity-type brokers 
> --entity-name 59 --alter --add-config 
> 'sasl.jaas.config=[username=test,password=test]'
> command does not return but the kafka broker logs prints the below error 
> messages.
> org.apache.kafka.common.security.authenticator.SaslServerAuthenticator - Set 
> SASL server state to FAILED during authentication"}}
> {"type":"log", "host":"kf-kaudynamic-0", "level":"INFO", 
> "neid":"kafka-cfd5ccf2af7f47868e83471a5b603408", "system":"kafka", 
> "time":"2021-03-23T08:29:00.946", "timezone":"UTC", 
> "log":\{"message":"data-plane-kafka-network-thread-1001-ListenerName(SASL_PLAINTEXT)-SASL_PLAINTEXT-2
>  - org.apache.kafka.common.network.Selector - [SocketServer brokerId=1001] 
> Failed authentication with /127.0.0.1 (Unexpected Kafka request of type 
> METADATA during SASL handshake.)"}}
>  
> 1. If one has SASL enabled and with a single listener, how are we supposed to 
> change the sasl credentials using this command ?
> 2. can anyone point us out to some example commands for modifying the sasl 
> jaas configurations ?



--
This message was sent by Atlassian Jira
(v8.3.4#803005)

Reply via email to