Apache Kafka Series - Kafka Security | SSL SASL Kerberos ACL

Offered byUDEMY

Apache Kafka Series - Kafka Security | SSL SASL Kerberos ACL
at
UDEMY
Overview

Hands-On Course - Kafka Security Setup in AWS with SSL Encryption & Authentication, SASL Kerberos, ACL in Zookeeper

Duration	4 hours
Mode of learning	Online
Difficulty level	Intermediate
Official Website	Go to Website
Credential	Certificate

Apache Kafka Series - Kafka Security | SSL SASL Kerberos ACL
at
UDEMY
Highlights

Setup and use SSL encryption in Kafka
Setup and use SSL authentication in Kafka
Setup and use SASL Kerberos authentication in Kafka
Create and use ACLs in Kafka
Configure Kafka Clients to make them work with security
Configure Zookeeper Security

Apache Kafka Series - Kafka Security | SSL SASL Kerberos ACL
at
UDEMY
Course details

Skills you will learn

Cloud Computing Apache

Who should do this course?

Administrators who want to start setting up Kafka Security
Developers who want to learn which security settings to use in their programs
Solution Architects who want to learn how Kafka Security works

What are the course deliverables?

Course Introduction: Let's learn why we need Security in Apache Kafka
Kafka Setup: Quickly setup Kafka in AWS EC2 and test it, as a pre-requisite to setting up security on it
SSL Encryption in Kafka: Setup a Certificate Authority and create certificates for your Kafka broker and Kafka client
SSL Authentication in Kafka: Learn how to force clients to authenticate using SSL to connect to your Kafka Cluster
SASL Authentication - Kerberos GSSAPI in Kafka: Setup Kerberos on an EC2 machine and create credentials for Kafka and Clients.
Authorization in Kafka: Learn how to enforce ACLs in Kafka and use the CLI to authorize clients.
Zookeeper Security: Learn how to secure Zookeeper using Kerberos

More about this course

If you've struggled setting up Kafka Security, or can't make sense of the documentation, this course is for you. First of all, an insecure cluster is a big problem:
anyone can read / write to any topic, and this can lead to bad data or data leak
you don't know who is connected to your cluster
data isn't encrypted in flight and could be intercepted by hackers
In this course, you'll learn Kafka Security, with Encryption (SSL), Authentication (SSL & SASL), and Authorization (ACL).
Over 1800 students and 160 reviews later, we're convinced this course can save you a lot of time.

Apache Kafka Series - Kafka Security | SSL SASL Kerberos ACL
at
UDEMY
Curriculum

Course Introduction

Kafka Security Overview

Course Structure + Pre-requisites

About your instructors

Code Download and Setup

Code Download + Setup

Kafka Setup

Section Objective

Hands-On: Creating your EC2 Instance + SSH

How to SSH

Kafka + Zookeeper Setup

Hands-On: Setup Kafka & Zookeeper Service

Producer / Consumer test

Kafka Setup Section Summary

SSL Encryption in Kafka

The need for SSL Encryption

What Is SSL?

SSL in Kafka

Hands-On: Creating a Certificate Authority (CA)

Hands-On: SSL Setup in Kafka

Hands-On: SSL Setup for Clients

Performance impact of SSL in Kafka

SSL Encryption Section Summary

SSL Authentication in Kafka

What is SSL Authentication?

Hands-On: SSL Authentication

SSL Authentication - Kerberos/GSSAPI in Kafka

What is SASL in Kafka?

What is Kerberos?

Frequent Kerberos Errors

Hands-On Kerberos - Part 1: Setup EC2

Hands-On Kerberos - Part 2: Principals & Keytabs

Hands-On Kerberos - Part 3: Kafka Configuration

Hands-On Kerberos - Part 4: Client Configuration

JAAS file / config

Authorization in Kafka

ACLs in Kafka

Hands-On: ACL demo

ACLs Documentation Links

Zookeeper Security

Zookeeper Security Introduction

Zookeeper Create Principal

Zookeeper Configure Kerberos

Hands-On: ZNode General

Zookeeper Authorisation Config

Hands-On: Zookeeper SuperUser

Zookeeper Security Migration Tool and Summary

Apache Kafka Series - Kafka Security | SSL SASL Kerberos ACL
at
UDEMY
Faculty details

Stephane Maarek | AWS Certified Solutions Architect & Developer Associate

Stephane is a solutions architect, consultant and software developer that has a particular interest in all things related to Big Data, Cloud & API. He's also a many-times best seller instructor on Udemy for his courses in Apache Kafka and AWS. [See FAQ below to see in which order you can take my courses] Stéphane is recognized as an AWS Hero and is an AWS Certified Solutions Architect Professional & AWS Certified DevOps Professional. He loves to teach people how to use the AWS properly, to get them ready for their AWS certifications, and most importantly for the real world. He also loves Apache Kafka. He sits on the 2019 Program Committee organizing the Kafka Summit in New York, London and San Francisco. He is also an active member of the Apache Kafka community, authoring blogs on Medium and a guest blog for Confluent. During his spare time he enjoys cooking, practicing yoga, surfing, watching TV shows, and traveling to awesome destinations!

Gerd Koenig

Experienced in setting up and operating Kafka-, Hadoop-Clusters on both on-premise and Cloud, "enterprise-ready" incl. Security . Cloud architectures and ops Community oriented and a CNCF enthusiast of all things Containers & its orchestration. K8s and tooling around =><= several years of consulting experience in BigData throughout various businesses and lots of production deployments. Doing architecture/planning/setup and maintenance of Container-Orchestrations as well as many kind of Clusters, Kafka and/or many tools from Hadoop distributions HDP / HDF / CDH. Securing Hadoop Clusters by Kerberos Authentication, Authorization, Encryption, ...