Confluent Platform Security Tools

This repo contains a tool that generates Kafka keystores and trust stores, along with a diagram that explains how keystores and trust stores can be deployed in Kafka.

Both the diagram and the script store the CA in the trust store. The trust store can be configured in other ways, for example, with multiple CAs, or with certificates instead of CAs. However, at this time, the diagram and the script don't address these additional configurations.

User-input vs. Scripted Installation

kafka-generate-ssl.sh - asks for user input
kafka-generate-ssl-automatic.sh - scripted installation, requires these environment variables to be set (example):
- COUNTRY
- STATE
- ORGANIZATION_UNIT
- CITY
- PASSWORD

Example:

export COUNTRY=US
export STATE=IL
export ORGANIZATION_UNIT=SE
export CITY=Chicago
export PASSWORD=secret
bash ./kafka-generate-ssl-automatic.sh

Name		Name	Last commit message	Last commit date
Latest commit History 15 Commits
README.md		README.md
kafka-generate-ssl-automatic.sh		kafka-generate-ssl-automatic.sh
kafka-generate-ssl.sh		kafka-generate-ssl.sh
single-trust-store-diagram.pages		single-trust-store-diagram.pages
single-trust-store-diagram.pdf		single-trust-store-diagram.pdf

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Repository files navigation

Confluent Platform Security Tools

User-input vs. Scripted Installation

About

Releases

Packages

Contributors 8

Languages

confluentinc/confluent-platform-security-tools

Folders and files

Latest commit

History

Repository files navigation

Confluent Platform Security Tools

User-input vs. Scripted Installation

About

Resources

Stars

Watchers

Forks

Releases

Packages 0

Contributors 8

Languages

Packages