0
0
Kafkadevops~20 mins

SSL/TLS encryption in Kafka - Practice Problems & Coding Challenges

Choose your learning style9 modes available
LearnWhyDeepVisualTryChallengeProjectRecallTime
Challenge - 5 Problems
🎖️
Kafka SSL/TLS Master
Get all challenges correct to earn this badge!
Test your skills under time pressure!
Predict Output
intermediate
2:00remaining
What is the output of this Kafka SSL configuration snippet?
Consider the following Kafka client SSL configuration in a properties file format. What will be the value of ssl.endpoint.identification.algorithm after loading this configuration?
Kafka
ssl.endpoint.identification.algorithm=
ssl.keystore.location=/var/private/ssl/kafka.client.keystore.jks
ssl.keystore.password=keystorepass
ssl.key.password=keypass
ssl.truststore.location=/var/private/ssl/kafka.client.truststore.jks
ssl.truststore.password=truststorepass
A"https"
Bnull (not set)
C"SSL"
D"" (empty string)
Attempts:
2 left
💡 Hint
Look carefully at the value assigned to ssl.endpoint.identification.algorithm.
🧠 Conceptual
intermediate
2:00remaining
Which Kafka SSL property enables client authentication?
In Kafka SSL encryption, which configuration property must be set to enable the broker to authenticate clients using SSL certificates?
Assl.client.auth=required
Bssl.keystore.location=/path/to/keystore.jks
Cssl.truststore.location=/path/to/truststore.jks
Dssl.enabled.protocols=TLSv1.2
Attempts:
2 left
💡 Hint
Think about the property that controls client certificate requirements.
🔧 Debug
advanced
2:00remaining
What error does this Kafka SSL producer configuration cause?
Given this Kafka producer SSL configuration snippet, what error will occur when the producer tries to connect to the broker?
Kafka
security.protocol=SSL
ssl.keystore.location=/etc/kafka/producer.keystore.jks
ssl.keystore.password=producerpass
ssl.key.password=wrongpass
ssl.truststore.location=/etc/kafka/producer.truststore.jks
ssl.truststore.password=trustpass
AAuthenticationException due to missing client certificate
BTimeoutException due to unreachable broker
CSSLHandshakeException due to incorrect key password
DNo error, connection succeeds
Attempts:
2 left
💡 Hint
Check the password used for the private key in the keystore.
📝 Syntax
advanced
2:00remaining
Which Kafka SSL configuration snippet is syntactically correct?
Identify the syntactically correct Kafka SSL configuration snippet from the options below.
A
ssl.keystore.location=/etc/kafka/keystore.jks
ssl.keystore.password=pass
ssl.key.password
ssl.truststore.location=/etc/kafka/truststore.jks
ssl.truststore.password=pass
B
ssl.keystore.location=/etc/kafka/keystore.jks
ssl.keystore.password=pass
ssl.key.password=pass
ssl.truststore.location=/etc/kafka/truststore.jks
ssl.truststore.password=pass
C
ssl.keystore.location=/etc/kafka/keystore.jks
ssl.keystore.password
ssl.key.password=pass
ssl.truststore.location=/etc/kafka/truststore.jks
ssl.truststore.password=pass
D
ssl.keystore.location=/etc/kafka/keystore.jks
ssl.keystore.password=pass
ssl.key.password=pass
ssl.truststore.location
ssl.truststore.password=pass
Attempts:
2 left
💡 Hint
Look for missing values after the equals sign.
🚀 Application
expert
2:00remaining
How many SSL handshake attempts will occur with this Kafka client config?
A Kafka client is configured with the following SSL properties: security.protocol=SSL ssl.keystore.location=/client/keystore.jks ssl.keystore.password=clientpass ssl.key.password=clientkeypass ssl.truststore.location=/client/truststore.jks ssl.truststore.password=trustpass ssl.endpoint.identification.algorithm=https If the broker's certificate hostname does not match the broker's DNS name, how many SSL handshake attempts will the client make before failing?
A1 handshake attempt, then failure due to hostname verification
B3 handshake attempts with retries before failure
CNo handshake attempts because client rejects config
DInfinite handshake attempts until manual stop
Attempts:
2 left
💡 Hint
Consider how hostname verification affects SSL handshake in Kafka clients.