-
Final version of SSL gen script for kafka
Hi, I wrote a lot about this topic but it seems that i came to the procedure specified by Confluent. Here is the right way to do it, at least for now: #!/bin/bash HOST= PASSWORD= KEYSTOREPASS= VALIDITY=365 keytool -keystore kafka.server.keystore.jks -alias ${HOST} -validity $VALIDITY -genkey -dname “CN=${HOST}, OU=MyTeam, O=MyCompany, L=Bucharest S=Romania C=RO” -storepass $KEYSTOREPASS -keypass…
-
Wrong again, there is no return code 0 on self signed certs
Morning, It looks like i was wrong again with the SSL generation script. Here is the second article Code 0 is not good after all and it signals that Kafka broker is closing the connection really fast. So: There is no 0 on self signed certs Please make sure that you have a certificate in…
-
Correct SSL script for Kafka deployment
Hi, I wrote some time ago a post about certificate generation in order to secure Kafka cluster. Long story short, it was wrong! Here is the correct version that returns O (keystore is correctly generated and used) #!/bin/bash HOST= PASSWORD= KEYSTOREPASS= VALIDITY=365 keytool -keystore kafka.server.temp.keystore.jks -alias $HOST -validity $VALIDITY -genkey -dname “CN=${HOST}, OU=Myteam, O=Mycompany, L=Bucharest…
-
Kafka problem that wasn’t a problem after all
Hi, Do not make my mistake from the last couple of weeks trying to connect to a “secured” kafka cluster using TLS. I wrote following article http://log-it.tech/2017/07/27/configure-kafka-truststore-keystore-using-puppet/ some time ago, and i know that it’s far from bullet proof but it does the job. Now let’s get to the subject, if you want to connect…