Hi Harish- Currently there is no way to restrict ALL incoming client connections when using SASL.
In ZooKeeper, SASL works on a node by node basis. Thanks, Abe On Thu, Mar 8, 2018, at 03:58, Harish kumar wrote: > Hi, > > I have enabled SASL on my Zookeeper, with below configuration. > > *requireClientAuthScheme=sasl* > *authProvider.1=org.apache.zookeeper.server.auth.SASLAuthenticationProvider* > > But still I see that, I am able to connect to zookeeper even without a > valid kerberos ticket. > Is there a way to restrict all client connections only with valid kerberos > ticket. > > Zookeeper Version - 3.4.8 > > > Thanks, > Harish
