440 questions
1
vote
0
answers
27
views
Hadoop Kerberos client fails on WildFly with "Parameter 'callbackHandler' may not be null" (Elytron SASL GSSAPI)
I am running a Hadoop HDFS client inside WildFly and connecting to a Kerberos-secured HDFS cluster.
Environment:
- WildFly 34 (bootable JAR)
- Java 17
- Hadoop client 3.x
- Kerberos authentication ...
- 11
0
votes
0
answers
145
views
Filebeat v9.2.2 and Kafka v4.0.0 with SASL_SSL
I'm trying to set up secure log export from Filebit to Kafka and I'm running into configuration issues. Based on the documentation examples and field descriptions, I created the following configuratio,...
- 1
1
vote
0
answers
27
views
Spring Cloud Stream BinderCustomizer does not seem to call ConsumerConfigCustomizers
I have an application that uses the Spring Cloud Stream application to talk to Kafka. Currently, SASL authentication is configured by default to use OAuth bearer tokens. This is defined statically in ...
- 6,105
1
vote
0
answers
89
views
How to configure ACLs with SASL_SSL OAUTHBEARER in Apache Kafka (KRaft mode, multi-node setup)?
I am trying to secure an Apache Kafka cluster running in KRaft mode using SASL_SSL with OAUTHBEARER authentication and enforce ACLs.
I have a multi-node setup - controller and broker run on different ...
0
votes
1
answer
436
views
DotNet LdapConnection with authentication method external and client certificate
Summary of this question: does someone know how to use a client certificate to authenticate over LDAP to Active Directory without using a password from a dotnet application? Or at least can someone ...
3
votes
1
answer
227
views
Why am I getting "SASL authentication failed" with Jakarta Mail?
I am trying to send an email using Jakarta Mail with Exchange Online, but I am encountering the following error:
Error Message:
SASL authentication failed
Steps I have taken:
I have configured the ...
- 31
1
vote
0
answers
571
views
Apache Kafka SASL/OAUTHBEARER with Keycloak – “An internal error occurred while retrieving token from callback handler”
I’m trying to configure Apache Kafka 3.8.0 in KRaft mode to use Keycloak 26.1.1 for authentication via SASL/OAUTHBEARER. My Keycloak realm is named Kafka-Auth, and I have a confidential client called ...
- 11
1
vote
0
answers
138
views
Kafka KRaft with SASL_SSL | Error: Unexpected Kafka request of type METADATA during SASL handshake
I already have a functioning Kafka KRaft cluster with mTLS. Now I'm trying to setup a cluster with SASL_SSL but I get the following error on the broker listener:
INFO [SocketServer listenerType=BROKER,...
- 11
0
votes
1
answer
394
views
Confluent Kafka with OAUTH 2 grant_type=client_credential
Even if i provide wrong clientId clientSecret scope
clientId="1test_kafka" \
clientSecret="xxx" \
scope="1test_kafka_access" \
unsecuredLoginStringClaim_sub=&...
- 370
0
votes
1
answer
32
views
kafka-client 2.7.0 use SASL connet kafka2.2, first time send message throw TimeoutException Topic *** not present in metadata after 1000 ms
kafka-client version 2.7.0
kafka version 2.2
producer config
Map<String, Object> props = new HashMap<>();
props.put(ProducerConfig.BOOTSTRAP_SERVERS_CONFIG, "server1:19000,server2:...
- 1
-1
votes
1
answer
2k
views
KAFKA Security error - SASL PlainText error
i am new to kafka and my requirement is to implement SASL PLAINTEXT (username/ password) security in kafka broker(s). i tried different things but on success till now. what i have confs i did were
...
- 85
1
vote
1
answer
893
views
Error Connecting to MSK Cluster with Kafka-Python Using SASL_SSL
I'm trying to connect an AWS Lambda function to an Amazon MSK (Managed Streaming for Apache Kafka) cluster using the kafka-python library with SASL_SSL authentication. I am following the official ...
- 23
1
vote
0
answers
606
views
Use service account from google to send emails through smtp.gmail.com
I'm trying to use a gmail account that I've using so far to relay emails automatically with a web app. Using the email and password, being insecure and therefore not allowed from the 30th September. I ...
0
votes
0
answers
111
views
Unable to communicate kafka broker containers in docker environment
In my development environment, I just tried to set up SASL SSL communication between producer, consumer apps, and 3 kafka brokers as dockerized. Self signed certificates created with below commands in ...
- 93
0
votes
1
answer
186
views
Not able to connect to ActiveMQ 6.x with SSL client certificate and WITHOUT SASL
I have activemq classic 6.x version. I am trying to disable SASL resulting in the consumers and publishers to connect using only the SSL certificates. But it is not working. During my configuration ...
- 960