Question

2
Replies
37
Views
Dinesh Kumar Dhanasekaran (DineshKumarD9112)
Accenture

Accenture
IN
DineshKumarD9112 Member since 2017 21 posts
Accenture
Posted: 3 weeks ago
Last activity: 6 days 13 hours ago
Posted: 23 May 2021 9:40 EDT
Last activity: 7 Jun 2021 0:35 EDT

Unable to establish successful connection with Kafka broker

Hi All,

I have set up a local kafka server with SSL enabled one side and SASL enabled for client authentication. Configuration is done on the server side. Please find attached the server.propeties and zookeeper.properties file. Since i cant attach properties file in support site, im attaching it in txt format here.

Below are the lines added in server.properties file. its added in the last

sasl.enabled.mechanisms=SCRAM-SHA-512 sasl.mechanism.inter.broker.protocol=SCRAM-SHA-512 listener.name.sasl_ssl.scram-sha-512.sasl.jaas.config=org.apache.kafka.common.security.scram.ScramLoginModule required username="broker-admin" password="DEM123"; super.users=User:broker-admin

authorizer.class.name=kafka.security.authorizer.AclAuthorizer

How to set up the configuration on the pega side? I see the below in the docs but this is not clear.

Before you begin:

In systems deployed on premises, Pega supports configuring SASL authentication between Pega Platform and the Kafka cluster using a JAAS configuration file. To configure SASL authentication, perform the following steps:

  1. In the Kafka cluster, configure the Kafka Client credentials in the JAAS configuration file to enable either simple authentication (using a username and password) or Kerberos authentication. - JAAS Config file is attached in the txt format , is that fine?
  2. Pass the location of the JAAS configuration file as a JVM parameter in the Kafka cluster, for example: -Djava.security.auth.login.config = <path_to_JAAS_file> - In which file should i put this into?

For more information about configuring the JAAS configuration file, see the Apache Kafka documentation.

 

Please help me on this.

***Edited by Moderator: Pooja Gadige to add platform capability tag***
Pega Platform 8.5.1 Security Decision Management Other Industry Senior System Architect