Chronicle forwarder Kafka what are the supported authentication mechanism?

Question

Hi Experts,Does authentication for Kafka supports SASL/Plain?I've been told it only supports SASL/SCRAM SHA-512. I am not able to find any settings with respect to the authentication mechanism.  https://github.com/chronicle/cli/blob/main/forwarders/constants/schema.py#L108-L115Can someone confirm whether we can control PLAIN, SCRAM or other authentication mechanism for the kafka forder?Thanks in advance!

JeremyLand · Accepted Answer

The Kafka collector on the Chronicle forwarder defaults to SASL/SCRAM-SHA512, but there is a config option that hasn't made it into the documentation yet that will allow you to force SASL/Plain. If you add :

use_plain_mechanism: true

to your kafka collector it will switch the auth mechanism.

vaskenh · Answer

Hi @kennethheung. I'm personally unsure about whether the forwarder itself can negotiate SASL/Plain but in terms of architecture I just wanted to send over some docs from the Bindplane side of things as an alternative.

From the best that I can gather, Bindplane does support both SASL/Plain and SASL/SCRAM so just in case the Forwarder only supports one I wanted to send this over.

https://bindplane.com/docs/resources/destinations/kafka

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded