Recall & Review
beginner
What does SASL stand for in Kafka authentication?
SASL stands for Simple Authentication and Security Layer. It is a framework for adding authentication support to connection-based protocols.
Click to reveal answer
beginner
Name two common SASL mechanisms used in Kafka.
Two common SASL mechanisms in Kafka are SASL/PLAIN and SASL/SCRAM. SASL/PLAIN sends username and password in plain text (usually over SSL), while SASL/SCRAM uses a challenge-response mechanism for better security.
Click to reveal answer
intermediate
How do you enable SASL authentication in Kafka broker configuration?
You enable SASL by setting 'security.inter.broker.protocol' and 'sasl.mechanism.inter.broker.protocol' in the broker's server.properties file. Also, configure 'sasl.enabled.mechanisms' to list allowed SASL mechanisms.
Click to reveal answer
intermediate
What is the role of JAAS in Kafka SASL authentication?
JAAS (Java Authentication and Authorization Service) is used to configure the login modules for SASL authentication in Kafka. It defines how Kafka clients and brokers authenticate using SASL mechanisms.
Click to reveal answer
beginner
Why is it important to use SSL/TLS with SASL/PLAIN in Kafka?
SASL/PLAIN sends credentials in clear text, so using SSL/TLS encrypts the connection to protect username and password from being intercepted.
Click to reveal answer
Which SASL mechanism uses a challenge-response protocol for authentication in Kafka?
✗ Incorrect
SASL/SCRAM uses a challenge-response mechanism to securely authenticate clients without sending passwords in clear text.
What configuration property enables SASL mechanisms on a Kafka broker?
✗ Incorrect
'sasl.enabled.mechanisms' lists the SASL mechanisms the broker accepts for authentication.
Which file is used to configure JAAS login modules for Kafka SASL authentication?
✗ Incorrect
The JAAS configuration file (commonly named jaas.conf) defines login modules for SASL authentication.
Why should SASL/PLAIN be used only with SSL/TLS in Kafka?
✗ Incorrect
SASL/PLAIN sends username and password in clear text, so SSL/TLS is needed to encrypt the connection.
Which Kafka configuration property sets the protocol used between brokers for SASL?
✗ Incorrect
'security.inter.broker.protocol' defines the protocol (e.g., SASL_SSL) used for communication between Kafka brokers.
Explain how SASL authentication works in Kafka and why it is important.
Think about how Kafka verifies user identity securely.
You got /4 concepts.
Describe the steps to configure SASL authentication on a Kafka broker.
Focus on broker properties and JAAS file setup.
You got /4 concepts.