If you need to specify a keytab file when running KaDeck on your local machine to connect to your Apache Kafka cluster, you need to create a volume containing the keytab of your certificate and mount it to your Docker container.
Mounting the keytab file to your container
Start KaDeck with the following command:
docker run -d --network host --name=kadeckweb -e xeotek_kadeck_secret="<secret>"
-e xeotek_kadeck_teamid="<teamid>" -e xeotek_kadeck_port=80 -v "<absolutepath_to_keytab_file>":"/opt/xeotek/<name_of_your_keytab_file>" --rm xeotek/kadeckweb
Replace the placeholders accordingly:
- <absolutepath_to_keytab_file>
- The absolute path of your keytab file on your machine (e.g., "/home/myuser/myuser.keytab").
- <name_of_your_keytab_file>
- The name of your keytab file inside the container. Note this, as you need to specify the path including the file name in your Kerberos settings when creating the server configuration in KaDeck. Example: myuser.keytab
- <teamid>
- Your teamid that was provided to you in your welcome mail.
- <secret>
- Your secret that was provided to you in your welcome mail.
Logging in & configure Kerberos/SASL
Navigate to http://localhost:80 with your browser and log in with your user (default: admin/admin).
- Create a new server configuration or edit your existing one
- Enter or update the connection details appropriately.
- Select the appropriate security protocol.
- In the SASL tab update your SASL configuration string accordingly:
useKeyTab=true keyTab="/opt/xeotek/<name_of_your_keytab_file>"
To learn more about configuring Kerberos and SASL, read our article SASL/Kerberos Configuration.
Comments
Please sign in to leave a comment.