Skip to main content

Kafka mTLS authentication

Hi,

Currently, we are going to provide Kafka services to 20+ development teams
in my company, we'd like to provide that as multi-tenancy - the different
team has different authentication. And we try to use the Kafka mTLS
solution.

However, I meet a problem. If I need to add, remove or renew the
certificate to Kafka's truststore, Kafka requires a reboot which would
impact the service available for other teams.

So I want to know if there is a better way to support the change of Kafka's
certificate without impacting the service availability?

Any help is appreciated.

Thanks.
Yingjie Zou

Comments