Updated on 2022-12-14 GMT+08:00

Kerberos-based Security

Scenarios

Flink Kerberos configuration items must be configured in security mode.

Configuration Description

The configuration items include keytab and principal of Kerberos.

Table 1 Parameters

Parameter

Description

Default Value

Mandatory

security.kerberos.login.keytab

Keytab file path. This parameter is a client parameter.

Configure the parameter based on actual service requirements.

Yes

security.kerberos.login.principal

A parameter on the client. If security.kerberos.login.keytab and security.kerberos.login.principal are both set, keytab certificate is used by default.

Configure the parameter based on actual service requirements.

No

security.kerberos.login.contexts

Contexts of the jass file generated by Flink. This parameter is a server parameter.

Client, KafkaClient

Yes