Hi, I have problem with SASL_SSL configuration of Kafka. In Server.log is
strange error:
2023-12-21 00:22:17,254] DEBUG Setting SASL/SCRAM_SHA_256 server state to
FAILED (org.apache.kafka.common.security.scram.internals.ScramSaslServer)
[2023-12-21 00:22:17,256] DEBUG Set SASL server state to FAILED during
authentication
(org.apache.kafka.common.security.authenticator.SaslServerAuthenticator)
[2023-12-21 00:22:17,257] INFO [SocketServer listenerType=ZK_BROKER,
nodeId=0] Failed authentication with /127.0.0.1 (channelId=127.0.0.1:9092
-127.0.0.1:63474-6) (Authentication failed during authentication due to
invalid credentials with SASL mechanism SCRAM-SHA-256)
(org.apache.kafka.common.network.Selector)
My server.properties:
sasl.enabled.mechanisms=SCRAM-SHA-256
listeners=SASL_SSL://localhost:9092
advertised.listeners=SASL_SSL://localhost:9092
sasl.mechanism.inter.broker.protocol=SCRAM-SHA-256
security.inter.broker.protocol=SASL_SSL
ssl.keystore.location=C:/apps/certs/keystore.jks
ssl.keystore.password=sepultura1
ssl.key.password=sepultura1
ssl.truststore.location=C:/apps/certs/truststore.jks
ssl.truststore.password=sepultura1
ssl.client.auth=required
ssl.endpoint.identification.algorithm=
My serverjaas.conf:
KafkaServer {
org.apache.kafka.common.security.scram.ScramLoginModule required
username="user"
password="sepultura1";
};
Client {
org.apache.zookeeper.server.auth.DigestLoginModule required
user="user"
password="sepultura1";
};
KafkaClient {
org.apache.kafka.common.security.scram.ScramLoginModule required
username="user"
password="sepultura1";
};
My zookeeper.properties:
requireClientAuthScheme=sasl
zookeeper.authProvider.1=org.apache.zookeeper.server.auth.SASLAuthenticationProvider
my zookeeper.jaas.conf:
Client{
org.apache.zookeeper.server.auth.DigestLoginModule required
username="user"
password="sepultura1";
};
Server{
org.apache.zookeeper.server.auth.DigestLoginModule required
user_user="sepultura1";
};
can someone give me a point how to solve this issue?
Thank you
Best Regards
Petr
--
Petr Kostroun
tel.:721192142
<http://www.avg.com/email-signature?utm_medium=email&utm_source=link&utm_campaign=sig-email&utm_content=webmail>
Neobsahuje
žádné viry.www.avg.com
<http://www.avg.com/email-signature?utm_medium=email&utm_source=link&utm_campaign=sig-email&utm_content=webmail>
<#DAB4FAD8-2DD7-40BB-A1B8-4E2AA1F9FDF2>
strange error:
2023-12-21 00:22:17,254] DEBUG Setting SASL/SCRAM_SHA_256 server state to
FAILED (org.apache.kafka.common.security.scram.internals.ScramSaslServer)
[2023-12-21 00:22:17,256] DEBUG Set SASL server state to FAILED during
authentication
(org.apache.kafka.common.security.authenticator.SaslServerAuthenticator)
[2023-12-21 00:22:17,257] INFO [SocketServer listenerType=ZK_BROKER,
nodeId=0] Failed authentication with /127.0.0.1 (channelId=127.0.0.1:9092
-127.0.0.1:63474-6) (Authentication failed during authentication due to
invalid credentials with SASL mechanism SCRAM-SHA-256)
(org.apache.kafka.common.network.Selector)
My server.properties:
sasl.enabled.mechanisms=SCRAM-SHA-256
listeners=SASL_SSL://localhost:9092
advertised.listeners=SASL_SSL://localhost:9092
sasl.mechanism.inter.broker.protocol=SCRAM-SHA-256
security.inter.broker.protocol=SASL_SSL
ssl.keystore.location=C:/apps/certs/keystore.jks
ssl.keystore.password=sepultura1
ssl.key.password=sepultura1
ssl.truststore.location=C:/apps/certs/truststore.jks
ssl.truststore.password=sepultura1
ssl.client.auth=required
ssl.endpoint.identification.algorithm=
My serverjaas.conf:
KafkaServer {
org.apache.kafka.common.security.scram.ScramLoginModule required
username="user"
password="sepultura1";
};
Client {
org.apache.zookeeper.server.auth.DigestLoginModule required
user="user"
password="sepultura1";
};
KafkaClient {
org.apache.kafka.common.security.scram.ScramLoginModule required
username="user"
password="sepultura1";
};
My zookeeper.properties:
requireClientAuthScheme=sasl
zookeeper.authProvider.1=org.apache.zookeeper.server.auth.SASLAuthenticationProvider
my zookeeper.jaas.conf:
Client{
org.apache.zookeeper.server.auth.DigestLoginModule required
username="user"
password="sepultura1";
};
Server{
org.apache.zookeeper.server.auth.DigestLoginModule required
user_user="sepultura1";
};
can someone give me a point how to solve this issue?
Thank you
Best Regards
Petr
--
Petr Kostroun
tel.:721192142
<http://www.avg.com/email-signature?utm_medium=email&utm_source=link&utm_campaign=sig-email&utm_content=webmail>
Neobsahuje
žádné viry.www.avg.com
<http://www.avg.com/email-signature?utm_medium=email&utm_source=link&utm_campaign=sig-email&utm_content=webmail>
<#DAB4FAD8-2DD7-40BB-A1B8-4E2AA1F9FDF2>
Comments
Post a Comment