Support Questions
Find answers, ask questions, and share your expertise
Alert: Welcome to the Unified Cloudera Community. Former HCC members be sure to read and learn how to activate your account here.

Kafka Client Authentication Best Practices

Kafka Client Authentication Best Practices

New Contributor

Apologies, I'm relatively new to using HDF / HDP and Kerberos. We have setup a Kerboerized HDF cluster (3.0.1) and are using only Zookeeper and Kafka. The cluster is up and functioning fine. Where we are struggling is around is with Java Kafka clients authenticating to the cluster. Is there some documented best practices for authentication?

Our Java Kafka clients are Windows Services running as an AD service account. Should be generate a keytab for the service account and have our kafkaClient jaas file referrence that generated keytab? Or should write a script to run kinit (at some pre-determined time interval) with the service accounts credential to update the TGT in cache?

Don't have an account?
Coming from Hortonworks? Activate your account here