Darshan, I have not yet successfully gotten the ACLs to work in Kafka. I am still looking for help. I will update this email thread if I do find. In case you get it working, please let me know.
Thanks. R On Tue, May 23, 2017 at 8:49 AM, Darshan Purandare < purandare.dars...@gmail.com> wrote: > Raghav > > I saw few posts of yours around Kafka ACLs and the problems. I have seen > similar issues where Writer has not been able to write to any topic. I have > seen "leader not available" and sometimes "unknown topic or partition", and > "topic_authorization_failed" error. > > Let me know if you find a valid config that works. > > Thanks. > > > > On Tue, May 23, 2017 at 8:44 AM, Raghav <raghavas...@gmail.com> wrote: > >> Hello Kafka Users >> >> I am a new Kafka user and trying to make Kafka SSL work with Authorization >> and ACLs. I followed posts from Kafka and Confluent docs exactly to the >> point but my producer cannot write to kafka broker. I get >> "LEADER_NOT_FOUND" errors. And even Consumer throws the same errors. >> >> Can someone please share their config which worked with ACLs. >> >> Here is my config. Please help. >> >> server.properties config >> ------------------------------------------------------------ >> ------------------------------------------------ >> broker.id=0 >> auto.create.topics.enable=true >> delete.topic.enable=true >> >> listeners=PLAINTEXT://kafka1.example.com:9092 >> <http://kafka-dev1.example.com:9092/>,SSL://kafka1.example.com:9093 >> <http://kafka-dev1.example.com:9093/> >> host.name=kafka1.example.com <http://kafka-dev1.example.com/> >> >> >> >> ssl.keystore.location=/var/private/kafka1.keystore.jks >> ssl.keystore.password=12345678 >> ssl.key.password=12345678 >> >> ssl.truststore.location=/var/private/kafka1.truststore.jks >> ssl.truststore.password=12345678 >> >> ssl.client.auth=required >> ssl.enabled.protocols=TLSv1.2,TLSv1.1,TLSv1 >> ssl.keystore.type=JKS >> ssl.truststore.type=JKS >> >> authorizer.class.name=kafka.security.auth.SimpleAclAuthorizer >> ------------------------------------------------------------ >> ------------------------------------------------ >> >> >> >> Here is producer Config(producer.properties) >> ------------------------------------------------------------ >> ------------------------------------------------ >> security.protocol=SSL >> ssl.truststore.location=/var/private/kafka2.truststore.jks >> ssl.truststore.password=12345678 >> >> ssl.keystore.location=/var/private/kafka2.keystore.jks >> ssl.keystore.password=12345678 >> ssl.key.password=12345678 >> >> ssl.enabled.protocols=TLSv1.2,TLSv1.1,TLSv1 >> ssl.truststore.type=JKS >> ssl.keystore.type=JKS >> >> ------------------------------------------------------------ >> ------------------------------------------------ >> >> >> Raqhav >> > > -- Raghav
