Hi, x509 auth is the default when you enable client TLS. You can isolate your clients in the data tree by setting up ACLs on znodes properly.
I haven’t tried the above 2 in conjunction, so any feedback from you would be more than welcome. Andor > On 2019. Dec 27., at 14:07, Enrico Olivelli <[email protected]> wrote: > > Il ven 27 dic 2019, 13:42 shrikant kalani <[email protected]> ha > scritto: > >> Thanks Enrico. >> >> I am able to successfully implement TLS in the cluster. >> >> Is there a way I can provide access to znodes only for a particular system >> I’d. I tried Digest scheme authentication but that is not working as >> expected. Can you confirm the password provided in Digest Auth is some >> random password or actual password. >> > > It is the md5 digest. I think this is no more to be considered 'secure' > > If you are using tls auth I think there is some way to use the x509 > certificate but I have never used it > > > Enrico > > >> >> >> >> Sent from my iPhone >> >>> On 21 Dec 2019, at 8:22 PM, Enrico Olivelli <[email protected]> wrote: >>> >>> Yes it does >>> >>> Check >>> >> http://zookeeper.apache.org/doc/r3.5.6/zookeeperAdmin.html#sc_authOptions >>> >>> Hope that helps >>> Enrico >>> >>> Il sab 21 dic 2019, 09:44 shrikant kalani <[email protected]> ha >>> scritto: >>> >>>> Yes Mutual Auth and TLS. >>>> >>>> Sent from my iPhone >>>> >>>>>> On 21 Dec 2019, at 3:51 PM, Enrico Olivelli <[email protected]> >> wrote: >>>>> >>>>> Srikant >>>>> What do you mean with MTLS? Mutual auth and TLS? >>>>> >>>>> Enrico >>>>> >>>>> Il ven 20 dic 2019, 09:49 shrikant kalani <[email protected]> >> ha >>>>> scritto: >>>>> >>>>>> Hi >>>>>> >>>>>> Can someone help me in configuring Zookeeper with MTLS ? >>>>>> >>>>>> Thanks >>>>>> Srikant Kalani >>>>>> >>>>>> Sent from my iPhone >>>>>> >>>> >>
