RE: connecting to Zookeeper cluster using SSL/TLS Connection
Thanks Illya. Yes. Managed to get it working. The main problem was zookeeper version. Ignite-zookeeper.jar dependency is zookeeper-3.4.6.jar that doesn’t support SSL/Netty connection. I had to replace it with latest zookeeper-3.5.*.jar. I am not sure if this is the case for all Ignite users. Regards, Aravind. From: Ilya Kasnacheev Sent: Thursday, September 20, 2018 6:00 PM To: user@ignite.apache.org Subject: Re: connecting to Zookeeper cluster using SSL/TLS Connection Hello! Have you tried specifying zookeeper.client.secure If you want to connect to the server secure client port, you need to set this property to true on the client. This will connect to server using SSL with specified credentials. Note that it requires the Netty client. zookeeper.ssl.keyStore.location and zookeeper.ssl.keyStore.password Specifies the file path to a JKS containing the local credentials to be used for SSL connections, and the password to unlock the file. zookeeper.ssl.trustStore.location and zookeeper.ssl.trustStore.password Specifies the file path to a JKS containing the remote credentials to be used for SSL connections, and the password to unlock the file. as JVM system properties? Regards, -- Ilya Kasnacheev чт, 20 сент. 2018 г. в 6:01, Raghavan, Aravind mailto:aravind.ragha...@fenics.com>>: Hi All, I am trying to use Zookeeper for node discovery with Apache Ignite. I have configured Zookeeper to only accept SSL/TLS connections. How do I provide Zookeeper keystore detail to Apache Ignite ZookeeperDiscoverySpi? I have checked the documentation and source code of ignite-zookeeper.jar and I do not see any options to supply these details? Should I be providing these details elsewhere in the ignite config? Thanks, Aravind
Re: connecting to Zookeeper cluster using SSL/TLS Connection
Hello! Have you tried specifying zookeeper.client.secure If you want to connect to the server secure client port, you need to set this property to *true* on the client. This will connect to server using SSL with specified credentials. Note that it requires the Netty client. zookeeper.ssl.keyStore.location and zookeeper.ssl.keyStore.password Specifies the file path to a JKS containing the local credentials to be used for SSL connections, and the password to unlock the file. zookeeper.ssl.trustStore.location and zookeeper.ssl.trustStore.password Specifies the file path to a JKS containing the remote credentials to be used for SSL connections, and the password to unlock the file. as JVM system properties? Regards, -- Ilya Kasnacheev чт, 20 сент. 2018 г. в 6:01, Raghavan, Aravind : > > > Hi All, > > > > I am trying to use Zookeeper for node discovery with Apache Ignite. I have > configured Zookeeper to only accept SSL/TLS connections. How do I provide > Zookeeper keystore detail to Apache Ignite ZookeeperDiscoverySpi? I have > checked the documentation and source code of ignite-zookeeper.jar and I do > not see any options to supply these details? Should I be providing these > details elsewhere in the ignite config? > > > > Thanks, > > Aravind > > >
connecting to Zookeeper cluster using SSL/TLS Connection
Hi All, I am trying to use Zookeeper for node discovery with Apache Ignite. I have configured Zookeeper to only accept SSL/TLS connections. How do I provide Zookeeper keystore detail to Apache Ignite ZookeeperDiscoverySpi? I have checked the documentation and source code of ignite-zookeeper.jar and I do not see any options to supply these details? Should I be providing these details elsewhere in the ignite config? Thanks, Aravind