Keywords: Kafka - Other - Technical issue - Connectivity (SSH/FTP)
Description:
I followed exactly the steps as descibed here (including the conf/config change) and
the generated property files are ok, also the kafka.jaas.conf is ok. The truststore and keystore is made according to the manual and placed at the right place (…/conf/certs/…)
and still I get
kafka_tmp | [2020-05-12 18:28:23,159] ERROR [Controller id=1002, targetBrokerId=1002] Connection to node 1002 (demo.kafka.academy/172.19.0.3:9092) failed authentication due to: SSL handshake failed (org.apache.kafka.clients.NetworkClient)
Anyone knows where to look for this??
These are the generated files:
kafka.jaas.conf:
KafkaClient {
org.apache.kafka.common.security.plain.PlainLoginModule required
username="user"
password="bitnami";
};
KafkaServer {
org.apache.kafka.common.security.plain.PlainLoginModule required
username="user"
password="bitnami"
user_user="bitnami"
user_user="bitnami";
org.apache.kafka.common.security.scram.ScramLoginModule required;
};
Client {
org.apache.kafka.common.security.plain.PlainLoginModule required
username="kafka"
password="kafka_password";
};
consumer.properties:
group.id=test-consumer-group
ssl.keystore.location=/opt/bitnami/kafka/config/certs/kafka.keystore.jks
ssl.keystore.password=mysecret
ssl.truststore.location=/opt/bitnami/kafka/config/certs/kafka.truststore.jks
ssl.truststore.password=mysecret
ssl.key.password=mysecret
security.protocol=SASL_SSL
sasl.mechanism=PLAIN
producer.properties:
bootstrap.servers=localhost:9092
ssl.keystore.location=/opt/bitnami/kafka/config/certs/kafka.keystore.jks
ssl.keystore.password=mysecrect
ssl.truststore.location=/opt/bitnami/kafka/config/certs/kafka.truststore.jks
ssl.truststore.password=mysecrect
ssl.key.password=mysecrect
security.protocol=SASL_SSL
sasl.mechanism=PLAIN