Ssl – Kafka acl without kerberos

access-control-listauthenticationkafkassl

I'm trying to set up a single kafka server with certificate authentication and access controls based on those certificates without the bother of setting up a kerberos service.

Setting upp the certificate authentication is easy. But I enable the acl module in the config try to connect with a producer and get access denied errors, OK, I grant access and now I get a "leader not available" error. Disabling the acl module makes everything work again.

Is this possible or is it a requirement to use kerberos?

Best Answer

I also meet the problem , it seems support ssl-only + acl , you can try it http://comments.gmane.org/gmane.comp.apache.kafka.user/12619

Related Solutions

Linux – Provide Samba access based on LDAP info

I believe it will be necessary to at least have a domain admin on the LDAP server come over to type their password at least one time to accomplish what you want and join Samba to the domain.

Given that, the steps should be relatively simple. Taken from the Samba Wiki, set the following in your samba config:

* passdb backend = ldapsam:ldap://<your-hostname>
* ldap suffix = 
* ldap admin dn

Then run smbpasswd -w to let samba know the password for the admin dn.

There is also a nice writeup here.

Iis – Authenticating with Exchange WebDAV / Outlook Web Access

What web browser? I know on IE, the rules about what is "intranet" and therefore what will be allowed to send NTLM auth to the webserver are quite byzantine.

Basically, I suspect client browser configuration particularly if the browser is IE. The browser has to believe that the URL is blessed "intranet" to send NTLM credentials at all; if it thinks the URL is not intranet, it won't even try to send NTLM auth.

Best Answer

Related Solutions

Linux – Provide Samba access based on LDAP info

Iis – Authenticating with Exchange WebDAV / Outlook Web Access

Related Topic