This looks like a. list of trusted root certs to me. Did you configure the
ssl keystore, trust store correctly? did you use truststore as key store?
for example?
[image: Confluent] <https://www.confluent.io>
Wu Shilin
Solution Architect
+6581007012
Follow us: [image: Blog]
<https://www.confluent.io/blog?utm_source=footer&utm_medium=email&utm_campaign=ch.email-signature_type.community_content.blog>[image:
Twitter] <https://twitter.com/ConfluentInc>[image: LinkedIn]
<https://www.linkedin.com/company/confluent/>[image: Slack]
<https://slackpass.io/confluentcommunity>[image: YouTube]
<https://youtube.com/confluent>
[image: Kafka Summit] <https://www.kafka-summit.org/>
On Mon, Jun 28, 2021 at 6:30 PM meghna murthy <meghna.agni@gmail.com> wrote:
> Hi Team ,
>
> Please help in resolving the below issue why Kafka is not sending the
> certificate which is present in it's trustedstore during Certificate
> Request to client in the Distinguished names.
>
> Is kafka will send it default certificate entries if yes is there any way
> to override in ssl properties ??
>
> Regards,
> Meghana
>
> On Fri, 25 Jun 2021 at 12:18, meghna murthy <meghna.agni@gmail.com> wrote:
>
>> Hi Team ,
>>
>> When ssl.client.auth=required is set , Srver is sending Certificate
>> request with DN with junk certificates to client . Server has to send what
>> certificates we have deployed since its sending junk certificate handshake
>> is failing. Attaching the screenshot of junk certificates sent in
>> Certificate request.
>>
>> Are these default certificate sent by kafka ??
>>
>> I have attached pcap also for the same Please help in resolving issue.
>> [image: image.png]
>> Regards,
>> Meghna
>>
>
ssl keystore, trust store correctly? did you use truststore as key store?
for example?
[image: Confluent] <https://www.confluent.io>
Wu Shilin
Solution Architect
+6581007012
Follow us: [image: Blog]
<https://www.confluent.io/blog?utm_source=footer&utm_medium=email&utm_campaign=ch.email-signature_type.community_content.blog>[image:
Twitter] <https://twitter.com/ConfluentInc>[image: LinkedIn]
<https://www.linkedin.com/company/confluent/>[image: Slack]
<https://slackpass.io/confluentcommunity>[image: YouTube]
<https://youtube.com/confluent>
[image: Kafka Summit] <https://www.kafka-summit.org/>
On Mon, Jun 28, 2021 at 6:30 PM meghna murthy <meghna.agni@gmail.com> wrote:
> Hi Team ,
>
> Please help in resolving the below issue why Kafka is not sending the
> certificate which is present in it's trustedstore during Certificate
> Request to client in the Distinguished names.
>
> Is kafka will send it default certificate entries if yes is there any way
> to override in ssl properties ??
>
> Regards,
> Meghana
>
> On Fri, 25 Jun 2021 at 12:18, meghna murthy <meghna.agni@gmail.com> wrote:
>
>> Hi Team ,
>>
>> When ssl.client.auth=required is set , Srver is sending Certificate
>> request with DN with junk certificates to client . Server has to send what
>> certificates we have deployed since its sending junk certificate handshake
>> is failing. Attaching the screenshot of junk certificates sent in
>> Certificate request.
>>
>> Are these default certificate sent by kafka ??
>>
>> I have attached pcap also for the same Please help in resolving issue.
>> [image: image.png]
>> Regards,
>> Meghna
>>
>
Comments
Post a Comment