Setting up Kafka Two-Way (SSL/TLS + SSL Client Authentication) on Windows Server 2016

MarkNaughton · 23 June 2022 13:39

Setting up Kafka Two-Way (SSL/TLS + SSL Client Authentication) on Windows Server 2016 running Confluent Kafka 1.9.0 api. Is there any mechanism to configure Confluent Kafka 1.9.0 to utilize Windows Certificate store instead of exporting certs to files or running a linux on windows?

MarkNaughton · 29 June 2022 20:58

Microsoft Confluent Kafka clients are unable to populate ClientConfig parameter
‘SslKeyLocation’ because the Certificate Store doesn’t allow exportation of private keys. Corporate security will not usually permit an externally generated PEM file on the disk. This leaves the only way to set up clients for Setting up Kafka Two-Way (SSL/TLS + SSL Client Authentication) is to use the CA method: “You can configure each broker and logical client with a truststore” Encrypt and authenticate Confluent Platform and resources with TLS | Confluent Documentation

Topic		Replies	Views
Pem Certificate strings to connect to Kafka in .Net client Clients	1	1411	25 March 2024
Client authentication fails with .Pfx file Non-Java Clients	0	3359	12 July 2022
First connect via SSL Kafka Connect	4	3314	21 January 2022
Unable to connect to kafka with truststore and keystore file Confluent Cloud	0	2026	7 March 2023
Consumer and Producer SSL Configuration Clients	1	3312	6 January 2023

Setting up Kafka Two-Way (SSL/TLS + SSL Client Authentication) on Windows Server 2016

Related Topics