No relevant resource is found in the selected language.

This site uses cookies. By continuing to browse the site you are agreeing to our use of cookies. Read our privacy policy>Search

Reminder

To have a better experience, please upgrade your IE browser.

upgrade

FusionInsight HD 6.5.0 Administrator Guide 02

Rate and give feedback :
Huawei uses machine translation combined with human proofreading to translate this document to different languages in order to help you better understand the content of this document. Note: Even the most advanced machine translation cannot match the quality of professional translators. Huawei shall not bear any responsibility for translation accuracy and it is recommended that you refer to the English document (a link for which has been provided).
Configuring SSL for Kafka to Encrypt Data During Transmission

Configuring SSL for Kafka to Encrypt Data During Transmission

Scenario

Data between the Kafka client and the Broker is transmitted in plain text. The Kafka client may be deployed in an untrusted network, exposing the transmitting data to leakage and tampering risks.

Procedure

The channels between components are not encrypted by default. You can set the following parameters to configure security channel encryption.

Page access: On FusionInsight Manager, choose Cluster > Service > Kafka > Configuration. Click All Configurations. Enter the parameter name in the search box.

NOTE:

Restart the corresponding service after configuration.

Table 14-7 describes configuration parameters relevant to Kafka data encryption during transmission.

Table 14-7 Parameters relevant to Kafka data encryption during transmission

Item

Description

Default Value

ssl.mode.enable

Specifies whether to enable the Secure Sockets Layer (SSL) protocol. If this parameter is set to true, services relevant to the SSL protocol are started during the Broker startup.

false

security.inter.broker.protocol

Specifies the communication protocol between Brokers. The communication protocol can be PLAINTEXT, SSL, SASL_PLAINTEXT, or SASL_SSL.

SASL_PLAINTEXT

The SSL protocol can be configured for the server or client to encrypt transmission and communication only after ssl.mode.enable is set to true and Broker enables the SSL and SASL_SSL protocols.

For details about access protocols, see section "Protocol Description for Accessing Kafka" in Service Operation Guide > Kafka > Safety Instruction on Using Kafka.

For details about how to configure SSL encryption for the client, see section Security Mode > Kafka Development Guide > More Information > External Interfaces > SSL Encryption Function Used by a Client in the Application Development Guide.

Download
Updated: 2019-05-17

Document ID: EDOC1100074522

Views: 6105

Downloads: 12

Average rating:
This Document Applies to these Products
Related Documents
Related Version
Share
Previous Next