If you want to learn more, check out my Apache Kafka Series - Kafka Security (SSL SASL Kerberos ACL) course : links.datacumulus.com/kafka-security-coupon
How's its 2 way authentication. this video shows that Client verified Server by using Server's signed certificate but Server didn't verify Client Certificate
Can you please explain this in terms of SAN and CN for 3 brokers cluster and a producer and consumer? How do I create my certs? P12 or jks on each of 3 nodes? Wnat will be CN, SAN? How do I create certificate authority for my producer and consumer?
Thanks Stephane Maarek, the diagram show is very detailed and informative. I question though, I always thought that in any interaction, it is the client which initiates communication. I was surprised to see here that step1 is the server sending the certificate.
Hi Stephane Maarek, I encounter a problem when config kafka to use SSL, the signed SSL certificate of broker didn't sent to the client(producer) at SSL handshake, so that I need to import each broker's certificate to the client trust store manually. Do you know why? Thanks.
If you want to learn more, check out my Apache Kafka Series - Kafka Security (SSL SASL Kerberos ACL) course : links.datacumulus.com/kafka-security-coupon
How's its 2 way authentication. this video shows that Client verified Server by using Server's signed certificate but Server didn't verify Client Certificate
Can you please explain this in terms of SAN and CN for 3 brokers cluster and a producer and consumer?
How do I create my certs? P12 or jks on each of 3 nodes? Wnat will be CN, SAN?
How do I create certificate authority for my producer and consumer?
Thanks Stephane Maarek, the diagram show is very detailed and informative. I question though, I always thought that in any interaction, it is the client which initiates communication. I was surprised to see here that step1 is the server sending the certificate.
He mentions that “upon client initiates the connection” - so trigger point is client initiating the handshake.
Great explanation
Hi
Stephane Maarek,
I encounter a problem when config kafka to use SSL, the signed SSL certificate of broker didn't sent to the client(producer) at SSL handshake, so that I need to import each broker's certificate to the client trust store manually. Do you know why? Thanks.
By the way I only config the one way verification.
Where’s the next part of Kafka Security SSL SASL ?
This is a paid course and it's available here: www.udemy.com/apache-kafka-security/?couponCode=TH-cam10