Kafka Security

By default there is no security, so client can connect to kafka cluster and perform operation. But in real time , we need to enable SSL security , perform 2 ways SSL handshake , establish connection. This is done with SSL/TLSv1.2. we need to enable SSL security for

Zookeepr

Zookeeper Client

Kafka Cluster- Brokers ( 3 brokers )

To perform security, we need to take care of below

Encryption

Authentication

Authorization

Please follow the below steps to take care of encryption & Authentication

Step 1 will be done only once, step2--step6 will be repeated for each client,brokers.

Step1 -command

openssl req -new -X509 -days 365000 \

-keyout ca (This is private Key)

-out ca-cert (This is public Key)

Step2 command

==

keytool -keystore kafka.zookeeper.truststore.jks -alias ca-cert -import -file ca-cert

Step3 command

==

keytool -keystore kafka.zookeeper.keystore.jks -alias zookeeper -import -file ca-cert