Hi I am trying to dabble with secure Kafka, and I have a small setup which I created by reading this:
http://docs.confluent.io/current/kafka/ssl.html My question is - If I have a CA cert, that I add in Kafka broker's truststore and keystore, and also client's (Producer and Consumer) truststore and keystore, can I use the above setup without actually creating private certificate and signing with CA for Kafka server and Kafka client ? I am looking to reduce the overhead for Kafka broker and Kafka client to create their certificates, exporting it to CA, and then CA signing it. That is why I am wondering if Kafka broker and Kafka client only use certificate issued by CA, can they mutually authenticate and encrypt traffic ? Thanks. -- R
