Communities
A collaborative platform to connect and grow with like-minded Informaticans across the globe
Product Communities
Connect and collaborate with Informatica experts and champions
Discussions
Have a question? Start a Discussion and get immediate answers you are looking for
User Groups
Customer-organized groups that meet online and in-person. Join today to network, share ideas, and get tips on how to get the most out of Informatica
Get Started
Community Guidelines
Knowledge Center
Troubleshooting documents, product guides, how to videos, best practices, and more
Knowledge Base
One-stop self-service portal for solutions, FAQs, Whitepapers, How Tos, Videos, and more
Support TV
Video channel for step-by-step instructions to use our products, best practices, troubleshooting tips, and much more
Documentation
Information library of the latest product documents
Velocity (Best Practices)
Best practices and use cases from the Implementation team
Learn
Rich resources to help you leverage full capabilities of our products
Trainings
Role-based training programs for the best ROI
Certifications
Get certified on Informatica products. Free, Foundation, or Professional
Product Learning Paths
Free and unlimited modules based on your expertise level and journey
Resources
Library of content to help you leverage the best of Informatica products
Tech Tuesdays Webinars
Most popular webinars on product architecture, best practices, and more
Product Availability Matrix
Product Availability Matrix statements of Informatica products
SupportFlash
Monthly support newsletter
Support Documents
Informatica Support Guide and Statements, Quick Start Guides, and Cloud Product Description Schedule
Product Lifecycle
End of Life statements of Informatica products
Ideas
Events
Change Request Tracking
Marketplace
English
  • Data Integration Connectors
  • All Products

Table of Contents

Search

  1. Preface
  2. Introduction to Kafka Connector
  3. Kafka connections
  4. Mappings for Kafka
  5. Appendix A: Data type reference

Kafka Connector

Kafka Connector

Back Next

Configuring one-way SSL authentication for Confluent schema registry in a mapping

Configuring one-way SSL authentication for Confluent schema registry in a mapping

You can configure SSL authentication to establish one-way secure communication with Confluent schema registry.

Import the Confluent schema registry truststore certificate

Import the Confluent schema registry truststore certificate and ensure that the certificates are in the
.jks
 format.
  1. Download the latest
    .jks
     truststore file from the secured Kafka broker associated with a secured schema registry.
  2. Extract the certificate from the
    .jks
     truststore file in PEM format.
    The certificate is exported in
    .cer
     format.
  3. When prompted, specify the password for the truststore file.
  4. Import the
    .cer
     certificate into the cacerts file in the following location:
    <Secure agent installation directory>\jdk\jre\lib\security
  5. When prompted, specify the password for the
    cacerts
     file.
  6. If there is a jdk folder within the
    <Secure agent installation directory>\apps
     folder, navigate to the following folder and import the
    .cer
     certificate into the
    cacerts
     file:
    <Secure agent installation directory>\apps\jdk\<latest Zulu version>\jre\lib\security
  7. After you import the
    cacerts
     file, verify the entry of the
    .cer
     certificate.
  8. Restart the Secure Agent.

Configure the Kafka connection

Configure the Kafka connection to enable one-way SSL authentication with the Confluent schema registry:
  1. In
    Administrator
    , select
    Connections
    .
  2. Select a Kafka connection for which you want to configure one-way SSL authentication with the Confluent schema registry.
  3. Click
    Edit
    .
  4. In the Kafka connection properties, select the
    SSL Mode
     as
    One-way
    .
  5. Specify the
    SSL TrustStore File Path
     and the
    SSL TrustStore Password
    .
  6. Click
    Save
     to save the connection.

Configure the Secure Agent

Configure the JVM Options and INFA_DEBUG property for the Secure Agent to configure one-way SSL authentication with the Confluent schema registry and to successfully import the Avro metadata from the Confluent schema registry.
To configure the Secure Agent and successfully import the Avro metadata, perform the following steps:
  1. In
    Administrator
    , select
    Runtime Environments
    .
  2. Select the Secure Agent for which you want to configure from the list of available Secure Agents.
  3. In the upper-right corner, click
    Edit
    .
  4. In the
    System Configuration Details
     section, select the
    Type
     as
    DTM
     for the Data Integration Service.
  5. Edit the following JVM options and add the following values:
    Property
    Value
    JVMOption3
    -Dsr.sslTruststoreFilePath=<schema registry truststore certificate file path>/schema_registry.truststore.jks
    JVMOption4
    -Dsr.sslTruststorePassword=<password for the schema registry truststore certificate>
  6. Select the
    Type
     as
    Platform
     for the Data Integration Service.
  7. Edit the INFA_DEBUG property and add the following space separated values:
    -Dsr.sslTruststoreFilePath=<schema registry truststore certificate file path>/schema_registry.truststore.jks -Dsr.sslTruststorePassword=<password for the schema registry truststore certificate>
  8. Click
    Save
    .
  9. Restart the Secure Agent.
0 COMMENTS
We’d like to hear from you!