Replies: 1 comment 1 reply
-
Ok I found out what the issue is. The nginx ingress must have SSL passthrough enabled. I'm using Rancher so to do this I had to add the following to the cluster definition.
|
Beta Was this translation helpful? Give feedback.
1 reply
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
-
I'm trying to test enabling TLS for listeners while using SCRAM-SHA-512 password authentication. However, I'm having some issues with the client connecting and I cannot figure out why.
Here is my listener definition for the cluster.
I also have a
test-user
created with all permissions.With the above configuration, I can see that the cluster is created and the user is also created with the password auto-generated. I tried using
kafka-ui
to connect to the cluster. First on port 9092, which is plain text, I can authenticate with the username/password without issue. I can view the brokers and create/modify topics. However, if I try to use either the TLS enabled port 9093, or ingess on port 443, I cannot get kafka-ui to connect without getting a cert validation error. I tried exportingca.crt
fromtest-kafka-cluster-ca-cert
secret and creating a truststore then importing that tokafka-ui
, but the result is the same. What exactly am I missing here?Beta Was this translation helpful? Give feedback.
All reactions