Connecting to Kafka by using SSL only
Pass keystore and truststore properties. The security protocol is SSL. There is no JAAS configuration.
Procedure
Add the following properties to the output section of the
CaseEventEmitter.json file that is passed to the
EnableCaseBAI.py configuration script.
- ssl.truststore.location
- The full path to a truststore retrieved from Event Streams user interface. See step 3 of Using IBM® EventStreams as your Kafka provider.
- ssl.truststore.password
- The password to the truststore.
- ssl.keystore.location
- The full path to a keystore file.
- ssl.keystore.password
- The password you used when you created the keystore.
- security.protocol
- The value is SSL.
- ssl.protocol
- The value is TLSv1.2.
- ssl.enabled.protocols
- The value is TLSv1.2.
- ssl.endpoint.identification.algorithm
- The value is HTTPS.
Example
"output" : {
"default" : {
"enable" : true,
"type" : "kafka",
"topic" : "ibm-bai-ingress",
"bootstrap.servers" : "kafka bootstrap server : port",
"security.protocol" : "SSL",
"ssl.truststore.location" : "/opt/truststore.jks",
"ssl.truststore.password" : "password",
"ssl.keystore.location" : "/opt/keystore.jks",
"ssl.keystore.password" : "password",
"ssl.protocol" : "TLSv1.2",
"ssl.enabled.protocols": "TLSv1.2",
"ssl.endpoint.identification.algorithm" : "HTTPS"
}
}