Skip to end of metadata
Go to start of metadata

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

Version 1 Next »

To use Kerberos Authentication over SASL while connecting to Kafka server, you need to define a Kafka account with details as discussed below.

  1. Click Configure > ACCOUNTS > Kafka.  

  2. Click Create Kafka account
  3. In Create Kafka Account window, do the followings:



    1. In the Name and Description fields, enter the name and description respectively for the new Kafka account.
    2. In the Broker field, enter the URL of the Kafka brokers, for example, host1:port1,host2:port2.

    3. In the Security Protocol field, enter SSL to communicate with brokers.

    4. Copy “./etc/truststore/cacerts” to “./etc/security/WSkeystore” and rename the file to DefaultTruststore.jks.

    5. In the Addon Configuration field, set the following properties.


      saslMechanism=GSSAPI

securityProtocol=SASL_SSL

saslJaasConfig=com.sun.security.auth.module.Krb5LoginModule required useKeyTab=true debug=true storeKey=true keyTab="<Path to KeyTabffile> " principal="<Principal Name used in keytab> " serviceName="<servicename of broker>";


    6. In the Select Project field, select the project.
    7. Click Save.
  • No labels