Hi, I want to enable security for JMX but I'm hitting a broker startup issue which I can't quite work out and wonder if anyone has any ideas.
$ export KAFKA_JMX_OPTS="-Dcom.sun.management.jmxremote \ -Dcom.sun.management.jmxremote.port=12346 \ -Dcom.sun.management.jmxremote.rmi.port=12346 \ -Dcom.sun.management.jmxremote.local.only=false \ -Dcom.sun.management.jmxremote.authenticate=false \ -Dcom.sun.management.jmxremote.ssl=false \ -Djava.rmi.server.hostname=192.168.33.10" $ /bin/kafka-server-start /etc/kafka/server.properties Works and launches fine. If I add what I think are the required JMX security options $ export KAFKA_JMX_OPTS="-Dcom.sun.management.jmxremote \ -Dcom.sun.management.jmxremote.port=12346 \ -Dcom.sun.management.jmxremote.rmi.port=12346 \ -Dcom.sun.management.jmxremote.local.only=false \ -Dcom.sun.management.jmxremote.authenticate=true \ -Dcom.sun.management.jmxremote.ssl=true \ -Djava.rmi.server.hostname=192.168.33.10 \ -Dcom.sun.management.jmxremote.password.file=/etc/kafka/jmx.password \ -Djavax.net.ssl.keyStore=/vagrant/secrets/kafka.broker1.keystore.jks \ -Djavax.net.ssl.keyStorePassword=confluent \ -Dcom.sun.management.jmxremote.ssl.need.client.auth=true \ -Djavax.net.ssl.trustStore=/vagrant/secrets/kafka.broker1.truststore.jks \ -Djavax.net.ssl.trustStorePassword=confluent \ -Dcom.sun.management.jmxremote.registry.ssl=true \ -Djava.security.manager \ -Djava.security.policy=jmx.policy" $ /bin/kafka-server-start /etc/kafka/server.properties Does not work, broker doesn't startup and I get the following: log4j:WARN No appenders could be found for logger (kafka.utils.CoreUtils$). log4j:WARN Please initialize the log4j system properly. log4j:WARN See http://logging.apache.org/log4j/1.2/faq.html#noconfig for more info. What am I missing? Thanks, Richard
