Configure TLS on kafka
We can configure kafka which is deployed as part of the hybrid runtime setup to use TLS for all producers.
Steps:
Create
openssl-san.cnf
file with the content below. This file configures the SAN for the certificates we will create in the next step.
Create certificates stores and certificate authority. The script below will create
ca-cert.pem
,server.keystore.jks
andserver.truststore.jks
.
Crete secret in kubernetes cluster to store these certificates.
Configure producers to use TLS.
Similar configuration can also be added to the eBPF traffic connector.
Note:
You can disable hostname verification as well by adding
INSECURE_SKIP_VERIFY
environment variable in the traffic connector and setting its value astrue
.You might need to change the value of
DNS.1
based on your deployment in step 4. In that case, recreate the certificates after deploying the helm chart and use them.To customize the helm chart you may take reference from helm-charts.
Get Support for your Akto setup
There are multiple ways to request support from Akto. We are 24X7 available on the following:
In-app
intercom
support. Message us with your query on intercom in Akto dashboard and someone will reply.Join our discord channel for community support.
Contact
help@akto.io
for email support.Contact us here.
Last updated
Was this helpful?