Ismael also wrote this security blog post about Kafka security. Hope you find it useful: https://www.confluent.io/blog/apache-kafka-security-authorization-authentication-encryption/
On Thu, May 25, 2017 at 12:04 AM, Waleed Fateem <waleed.fat...@gmail.com> wrote: > For completion, I saw Ismael Juma post an answer which contains the > information I was looking for: > > http://comments.gmane.org/gmane.comp.apache.kafka.user/15140 > > SASL_SSL -> authentication using SASL AND connection is encrypted using > SSL. > > On Wed, May 24, 2017 at 7:37 PM, Waleed Fateem <waleed.fat...@gmail.com> > wrote: > > > Hello! > > > > I'm not very clear on the behavior that we should expect when we > configure > > Kafka to use the protocol SASL_SSL. > > > > Is SASL or SSL mutually exclusive here or can I authenticate with SASL > and > > use SSL for encryption? > > > > If the latter is true, then is it correct to assume that encryption will > > take place using SSL if a client authenticates using a Kerberos ticket so > > long as they have a trust store configured? > > > > Thank you. > > > > Waleed > > > -- Kaufman Ng +1 646 961 8063 Solutions Architect | Confluent | www.confluent.io