Some of the content described in this article is available in meshIQ Manage versions 11 and greater (see the Versions 11 and later section below). See meshIQ Highlights v11 for an overview of feature changes.
To establish an SSL connection to the Kafka bootstrap server, you can use the Kafka Manager Connection Config tab. In this tab, you can enter the same configuration parameters that you would in a Kafka client application properties file. Due to the large number of possible Kafka configuration options, the configuration tab is provided to allow you to enter the specific parameters that are relevant to your environment. The configuration tab shown below is an example of parameters for setting up secure connections with SASL/SSL.
These are only examples and do not reflect the actual parameters that would be needed in a specific customer environment.
To configure parameters, enter each parameter name in the Configuration Entry field. Enter each parameter value in the Value field. Refer to Example in Text Format for the values in text form.
Versions 10.5 and earlier
Versions 11 and later
Beginning with version 11, configuration value fields include icons for encrypting values and for showing unencrypted values. When the value is hidden, or masked, the value is treated as a password and is encrypted during transmission to Kafka, then decrypted so Kafka can read it.
- The encrypt icon encrypts and masks the Configuration Value, as shown here:
- The show unencrypted icon shows the full value. See the important note below.
After you use the encrypt icon to encrypt a plain (unencrypted) value and save the connection, you will no longer be able to view the unencrypted value.
Example in Text Format
The table below shows the values from the example in text form.
Field |
Description |
security.protocol |
SSL |
ssl.keystore.type |
jks |
ssl.truststore.location |
/opt/nastel/AutoPilotM6/ssl For meshIQ Cloud users, enter the path to the uploaded certificate file, as shown on the Certificates tab of your meshIQ Cloud subscription page. |
ssl.keystore.password |
|
ssl.keystore.location |
/opt/nastel/AutoPilotM6/ssl |
ssl.truststore.type |
jks |