Bird
0
0

You want to configure Kafka clients to trust only a specific CA certificate. Which config should you use?

hard📝 Application Q9 of 15
Kafka - Security
You want to configure Kafka clients to trust only a specific CA certificate. Which config should you use?
Assl.client.auth=required
Bssl.truststore.location=/path/to/ca-truststore.jks
Csecurity.protocol=PLAINTEXT
Dssl.keystore.location=/path/to/client-keystore.jks
Step-by-Step Solution
Solution:

  1. Step 1: Identify truststore role for clients

    Clients use truststore to specify which CA certificates they trust.

  2. Step 2: Correct config for trusting specific CA

    Setting 'ssl.truststore.location' points to the truststore containing the CA cert.

  3. Final Answer:

    ssl.truststore.location=/path/to/ca-truststore.jks -> Option B

  4. Quick Check:

    Trust specific CA via ssl.truststore.location = D [OK]
Quick Trick: Set ssl.truststore.location to specify trusted CA [OK]
Common Mistakes:
MISTAKES
  • Confusing keystore with truststore
  • Using PLAINTEXT disables SSL
  • Setting client auth instead of truststore

Want More Practice?

15+ quiz questions · All difficulty levels · Free

Free Signup - Practice All Questions
More Kafka Quizzes
Advanced Stream Processing - Error handling in streams - Quiz 9hard Advanced Stream Processing - Interactive queries - Quiz 14medium Advanced Stream Processing - Why advanced patterns handle complex flows - Quiz 6medium Advanced Stream Processing - Custom SerDes - Quiz 2easy Advanced Stream Processing - Interactive queries - Quiz 5medium Event-Driven Architecture - Dead letter queue pattern - Quiz 14medium Performance Tuning - Disk I/O optimization - Quiz 3easy Security - Client authentication configuration - Quiz 4medium Security - Security best practices - Quiz 13medium Security - Encryption at rest - Quiz 12easy