App Connect

App Connect

Join this online user group to communicate across IBM product users and experts by sharing advice and best practices with peers and staying up to date regarding product enhancements.


#Applicationintegration
#App Connect
#AppConnect
 View Only

  • 1.  disabling hostname verification in IIB for kafka nodes

    Posted Tue February 18, 2020 10:11 AM
    Is there any property for disabling hostname verification in IIB kafka nodes.

    ------------------------------
    Amrita Singh
    ------------------------------


  • 2.  RE: disabling hostname verification in IIB for kafka nodes

    Posted Tue February 18, 2020 10:26 AM
    You mean hostname lookup ?

    Sent from IBM Verse

    Amrita Singh via IBM Community --- [EXTERNAL] IBM App Connect : disabling hostname verification in IIB for kafka nodes ---



    Original Message


  • 3.  RE: disabling hostname verification in IIB for kafka nodes

    Posted Wed February 19, 2020 02:52 AM
    No, I want to disable hostname verification for SSL connectivity as we do in HTTP nodes. I need to set this property for kafka nodes.

    ------------------------------
    Amrita Singh
    ------------------------------

    Original Message


  • 4.  RE: disabling hostname verification in IIB for kafka nodes

    Posted Wed February 19, 2020 02:54 AM
    No, I want to disable hostname verification for SSL connectivity as we do in HTTP nodes. I need to set this property for kafka nodes.

    ------------------------------
    Amrita Singh
    ------------------------------

    Original Message


  • 5.  RE: disabling hostname verification in IIB for kafka nodes

    Posted Wed February 19, 2020 10:47 PM
    I am trying to connect to kafka strimzi operator over kubernetes cluster with TLS authentication. As I am using nodeport TLS authentication in strimzi kafka, hostname verification needs to be disabled for the client, in this case it's IIB. HTTP nodes has this property but I am not able to find this property in kafka nodes.

    ------------------------------
    Amrita Singh
    ------------------------------

    Original Message


  • 6.  RE: disabling hostname verification in IIB for kafka nodes

    Posted Thu February 20, 2020 08:37 AM
    Assuming you are trying to prevent the Kafka client from validating the hostname of the servers certificate, it is possible, but how depends what version of IIB/ACE you are using.

    It ACE v11.0.0.7 there is a Kafka Policy with a property called "Enable SSL certificate hostname checking" which you can set to false
    to prevent the Kafka client checking the hostname of the Kafka server.

    Prior to 11.0.0.7, you need to the the ssl.endpoint.identification.algorithm property in a override config file and configure the Kafka nodes to use this config file. The config file is in the form of a java properties file and you set the environment variable MQSI_KAFKA_CONSUMER_PROPERTIES_FILE or MQSI_KAFKA_PRODUCER_PROPERTIES_FILE to load the overrides from the named file.

    I've not tried the pre 11.0.0.7 method myself, but it should work. Hopefully this helps.

    ------------------------------
    Trevor Lobban
    ------------------------------

    Original Message


  • 7.  RE: disabling hostname verification in IIB for kafka nodes

    Posted Mon February 24, 2020 02:22 AM
    Thanks a lot!! I will try this.

    ------------------------------
    Amrita Singh
    ------------------------------

    Original Message


  • 8.  RE: disabling hostname verification in IIB for kafka nodes

    Posted Wed May 06, 2020 05:44 PM
    While deploying kafka node in ACE V11.0.0.7 , null pointer exception error. any suggestions?

    ------------------------------
    Amrita Singh
    ------------------------------

    Original Message


Related Content