Cloudera Community
iamabug
user rank
Contributor
My Accepted Solutions
Show All

Re: Topic creation and deletion are not protected ...

by Moderator in Support Questions
‎02-19-2020 04:44 PM
1 Kudo
‎02-19-2020 04:44 PM
1 Kudo
@WilsonLozano,   As this thread is older and was marked 'Solved back in August of 2019 you would have a better chance of receiving a resolution by starting a new thread. This will also provide the opportunity to provide details specific to your environment, version of CDH, etc. that could aid others in providing a more accurate answer to your question.      ... View more

Re: wrong alerts when configuring two listeners fo...

by Contributor in Support Questions
‎11-09-2019 05:07 PM
‎11-09-2019 05:07 PM
@Shelton Glad that you reproduce this problem. I have ten brokers and every broker is configured with their respective IP addresses but I am afraid I cannot provide screenshot for some reasons. I have a workaround for this problem. In my own opinion, the reason of this problem is that Ambari cannot recognize IP and port bindings correctly. So to solve this is to avoiding the challenge for it. Here is my configuration now:   listeners=SASL_PLAINTEXT://0.0.0.0:9092,EXTERNAL://0.0.0.0:19092 advertised.listeners=SASL_PLAINTEXT://192.168.1.1:9092,EXTERNAL://88.88.88.88:19092 The other configurations stay unchanged. Notice that I change `listeners` so that even Ambari  cannot recognize the right IP and port binding, both ports are now available on all interfaces so there are no false alerts now. Thanks you so much for helping me on this problem and apologize for this late response. ... View more

Re: Kafka: security.inter.broker.protocol can not ...

by Contributor in Support Questions
‎11-05-2019 03:06 AM
‎11-05-2019 03:06 AM
I think CDH only support Kerberos for SASL. I switch to Ambari to manager kafka and use SASL/PLAIN at last. ... View more

Re: Configuring two listeners in Kerberized Kafka

by Contributor in Support Questions
‎09-09-2019 06:58 PM
‎09-09-2019 06:58 PM
Sorry @ManuelCalvo , I probably have no time to do that because the test environment has been torn down. And I kind of have a theory for that. I guess that Kerberos principals are based on hostnames while I have changed Kafka listeners to IP addresses. With that config, Kafka clients cannot build a qualified principal name because they do not know hostnames of brokers. Thanks for you help anyway ! ... View more

Re: How do I change hostname shown in Cloudera Man...

by Super Guru Super Guru in Support Questions
‎08-30-2019 12:54 AM
‎08-30-2019 12:54 AM
@iamabug The principal names are generated based on host's actual FULL qualified domain name, so it has to match with actual hostname, otherwise Kerberos will not work. So what you want in my opinion will not work, as kerberos is quite fuzzy about DNS resolutions. Cheers Eric ... View more

Re: Is it possible to have two versions of Kafka i...

by Contributor in Support Questions
‎08-21-2019 06:10 AM
‎08-21-2019 06:10 AM
Now I am really clear about the situation. Thanks a lot for your replies.  ... View more
Contact Me
Online
Offline
Last Visited
‎11-18-2024 08:00 AM
Community Statistics
Member Since ‎08-19-2019 06:15 PM
Last Visited ‎11-18-2024 08:00 AM
Posts 25
Kudos received 1