You can use SSL certificate hostname verification for rudimentary authentication rather than Kerberos. The two can be used together or independently.
On Mon, Mar 21, 2016 at 8:53 AM -0700, "christopher palm" <cpa...@gmail.com> wrote: Hi All, Does Kafka support SSL authentication and ACL authorization without Kerberos? If so, can different clients have their own SSL certificate on the same broker? In reading the following security article, it seems that Kerberos is an option but not required if SSL is used. Thanks, Chris http://www.confluent.io/blog/apache-kafka-security-authorization-authentication-encryption "Administrators can require client authentication using either Kerberos or Transport Layer Security (TLS) client certificates, so that Kafka brokers know who is making each request"
