Uploaded image for project: 'AMQ Streams'
  1. AMQ Streams
  2. ENTMQST-993

Adding more SSL Configuration options to Kafka broker

    XMLWordPrintable

Details

    • Task
    • Resolution: Done
    • Major
    • 1.5.0.GA
    • 1.1.0.GA
    • kafka-broker
    • None
    • 3
    • 2019.8, 2019.9, 2019.10, 2019.12

    Description

      We would like to be able to configure Kafka brokers with specific SSL options such as protocol and ciphers. Since all ssl.* options are currently controlled by AMQ Streams and will be ignored if setting them within kafka:config, there is no way to change them.
      For example, by default are TLS versions enabled. We would like to run our external listeners just on TLSv1.2 and be able to define specific ciphers for this version.

      Attachments

        Issue Links

          is cloned by

          Task - Represents a small unit of work that is not end-user facing. ENTMQST-1209 [QE] - Adding more SSL Configuration options to Kafka broker

          • Major - To be worked after higher priority work items are addressed. When the severity is high and the effort to change it is low to moderate, this term is chosen. Issues in this category likely have an existing workaround but implementation or execution may be non-trivial.
          • Closed
          is documented by

          Task - Represents a small unit of work that is not end-user facing. ENTMQST-1858 [DOC OCP] Document new SSL configuration options for Kafka brokers

          • Major - To be worked after higher priority work items are addressed. When the severity is high and the effort to change it is low to moderate, this term is chosen. Issues in this category likely have an existing workaround but implementation or execution may be non-trivial.
          • Closed
          is duplicated by

          Task - Represents a small unit of work that is not end-user facing. ENTMQST-720 Configure TLS details such as versions, cipher suites etc.

          • Major - To be worked after higher priority work items are addressed. When the severity is high and the effort to change it is low to moderate, this term is chosen. Issues in this category likely have an existing workaround but implementation or execution may be non-trivial.
          • Closed

          Activity

            People

              Unassigned Unassigned
              rhn-support-qluo Joe Luo
              Maros Orsak Maros Orsak
              Votes:
              0 Vote for this issue
              Watchers:
              7 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: