On 3/11/23 11:25, Daniele Carminati wrote:
But, when i try to enable SCRAM/SASL on controller -> controller
i get this error
[2023-11-03 09:05:02,134] INFO [SocketServer listenerType=CONTROLLER,
nodeId=1] Failed authentication with /192.168.1.34
(channelId=192.168.1.33:9093-192.168.1.34:56006-1304) (Authentication
failed during authentication due to invalid credentials with SASL mechanism
SCRAM-SHA-256) (org.apache.kafka.common.network.Selector)
NON WORKING KAFKA INTER CONTROLLER SCRAM CONFIGURATIONS
I have the very same issue, as documented in an email to the mailing
list at October, 27th.
WORKING CONFIGURATIONS
“kafka controller only node”
process.roles=controller
node.id=1
controller.quorum.voters=1@kraft-ct-1:9093,2@kraft-ct-2:9093,3@kraft-ct-3
:9093
listeners=CONTROLLER://kraft-ct-1:9093
controller.listener.names=CONTROLLER
listener.security.protocol.map=CONTROLLER:SSL,SSL:SSL,SASL_PLAINTEXT:SASL_PLAINTEXT,SASL_SSL:SASL_SSL
listener.name.controller.ssl.client.auth=required
I guess you are using here broker's X.509 client certificates for
authentication (to the controllers) and that works fine?
--
Jesús Cea Avión _/_/ _/_/_/ _/_/_/
j...@jcea.es - https://www.jcea.es/ _/_/ _/_/ _/_/ _/_/ _/_/
Twitter: @jcea _/_/ _/_/ _/_/_/_/_/
jabber / xmpp:j...@jabber.org _/_/ _/_/ _/_/ _/_/ _/_/
"Things are not so easy" _/_/ _/_/ _/_/ _/_/ _/_/ _/_/
"My name is Dump, Core Dump" _/_/_/ _/_/_/ _/_/ _/_/
"El amor es poner tu felicidad en la felicidad de otro" - Leibniz