That is exactly what I am after I think
Now I need to figure out how to do the Access Control (ACL) too
Thanx
-Tobias
On 2018-09-28, 12:33, "Daniel Nägele" wrote:
Hello Tobias,
you can declare multiple listeners, I use the following setup for instance:
Hello Tobias,
you can declare multiple listeners, I use the following setup for instance:
listeners=PLAINTEXT://fqdn:9092,SASL_SSL://fqdn:9093
I plan to turn PLAINTEXT off however, because why not encrypt the
internal communication too.
Best regards,
Daniel
On 9/27/18 10:09 AM, Tobias
What I mean by internal services, is our own company has a number of producers
and consumers, and I do not want these “applications” to use SSL/ACL as they
are already trusted and inside our network
External is any 3;rd party system that we bring in to do “whatever”
-Tobias
On 2018-09-27,
There is a good tutorial written by Ismael Juma on SSL/ACL/SASL etc. setup
-
https://www.confluent.io/blog/apache-kafka-security-authorization-authentication-encryption/
if I get this right, you are trying to do the following:
1) "Internal Services" - mean inter-broker exchanges?
2) "3rd Party
We have Kafka v1.1.0
Is there a really good tutorial somewhere on how to set up security with SSL
and ACL
I would like to have ONE cluster, where
* Our internal services does not have to use SSL / ACL
* The 3;rd party applications HAVE TO use SSL / ACL
is this possible ?
-Tobias
--
Tobias
