Hi I am wondering if there is a way to run the SSL and PLAINTEXT mode together ? I am running Kafka 10.2.1. We want our internal clients to use the PLAINTEXT mode to write to certain topics, but any external clients should use SSL to read messages on those topics. We also want to enforce ACLs.
To try this out, I modified my server.properties as follows, but without any luck. Can someone please let me know if it needs any change ? listeners=INTERNAL://10.10.10.64:9092,EXTERNAL://172.1.1.157:9093 advertised.listeners=INTERNAL://10.10.10.64:9092,EXTERNAL://172.1.1.157:9093 listener.security.protocol.map=INTERNAL:PLAINTEXT,EXTERNAL:SSL inter.broker.listener.name=INTERNAL ssl.keystore.location=/opt/keystores/keystotr.jks ssl.keystore.password=ABCDEFGH ssl.key.password=ABCDEFGH ssl.truststore.location=/opt/keystores/truststore.jks ssl.truststore.password=ABCDEFGH ssl.keystore.type=JKS ssl.truststore.type=JKS security.protocol=SSL ssl.client.auth=required # allow.everyone.if.no.acl.found=false allow.everyone.if.no.acl.found=true authorizer.class.name=kafka.security.auth.SimpleAclAuthorizer super.users=User:CN=KafkaBroker01 Thanks. --Darshan
