zookeeper-user mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Abraham Fine <af...@apache.org>
Subject Re: SASL for Client connections
Date Thu, 08 Mar 2018 19:00:58 GMT
Hi Harish-

Currently there is no way to restrict ALL incoming client connections when using SASL.

In ZooKeeper, SASL works on a node by node basis.

Thanks,
Abe

On Thu, Mar 8, 2018, at 03:58, Harish kumar wrote:
> Hi,
> 
> I have enabled SASL on my Zookeeper, with below configuration.
> 
> *requireClientAuthScheme=sasl*
> *authProvider.1=org.apache.zookeeper.server.auth.SASLAuthenticationProvider*
> 
> But still I see that, I am able to connect to zookeeper even without a
> valid kerberos ticket.
> Is there a way to restrict all client connections only with valid kerberos
> ticket.
> 
> Zookeeper Version - 3.4.8
> 
> 
> Thanks,
> Harish

Mime
View raw message