Connecting to Kafka by using SSL only

Pass keystore and truststore properties. The security protocol is SSL. There is no JAAS configuration.

Procedure

Add the following properties to the output section of the CaseEventEmitter.json file that is passed to the EnableCaseBAI.py configuration script.
ssl.truststore.location
The full path to a truststore retrieved from Event Streams user interface. See step 3 of Using IBM® EventStreams as your Kafka provider.
ssl.truststore.password
The password to the truststore.
ssl.keystore.location
The full path to a keystore file.
ssl.keystore.password
The password you used when you created the keystore.
security.protocol
The value is SSL.
ssl.protocol
The value is TLSv1.2.
ssl.enabled.protocols
The value is TLSv1.2.
ssl.endpoint.identification.algorithm
The value is HTTPS.

Example

"output" : {
"default" : {
   "enable" : true,
   "type" : "kafka",
   "topic" : "ibm-bai-ingress",
   "bootstrap.servers" : "kafka bootstrap server : port",
   "security.protocol" : "SSL",
   "ssl.truststore.location" : "/opt/truststore.jks",
   "ssl.truststore.password" : "password",
   "ssl.keystore.location" : "/opt/keystore.jks",
   "ssl.keystore.password" : "password",
   "ssl.protocol" : "TLSv1.2",
   "ssl.enabled.protocols": "TLSv1.2",
   "ssl.endpoint.identification.algorithm" : "HTTPS"
   }
}
Parent topic: Securing Case emitter communications to Kafka