cdh开启kerberos后kafka如何认证
#创建topic
zkListKafka="node01:2181,node02:2181,node03:2181"
kafkaBrokerList="node01:9092,node02:9092,node03:9092"
/opt/cloudera/parcels/KAFKA/bin/kafka-topics --create --zookeeper $zkListKafka --replication-factor 1 --partitions 1 --topic kerber_test
#查看topic
kafka-topics --list --zookeeper $zkListKafka
配置文件
vim /root/kafka/jaas.conf
KafkaClient{
com.sun.security.auth.module.Krb5LoginModule required
useKeyTab=true
keyTab="/home/admin.keytab"
principal="admin/[email protected]"
serviceName="kafka"
doNotPrompt=true;
};
vim /root/kafka/client.properties
security.protocol=SASL_PLAINTEXT
sasl.kerberos.service.name=kafka
生产者
#生产者
zkListKafka="node01:2181,node02:2181,node03:2181"
kafkaBrokerList="node01:9092,node02:9092,node03:9092"
export KAFKA_OPTS="-Djava.security.auth.login.config=/root/kafka/jaas.conf"
kafka-console-producer --broker-list $kafkaBrokerList --topic kerber_test --producer.config /root/kafka/client.properties
消费者
#消费者
zkListKafka="node01:2181,node02:2181,node03:2181"
kafkaBrokerList="node01:9092,node02:9092,node03:9092"
export KAFKA_OPTS="-Djava.security.auth.login.config=/root/kafka/jaas.conf"
kafka-console-consumer --new-consumer --topic kerber_test --from-beginning --bootstrap-server $kafkaBrokerList --consumer.config /root/kafka/client.properties