Orchestrate supports the Transport Layer Security (TLS) protocol to enable secure communications between Orchestrate workers and Apache Kafka.
TLS must be enabled on each of the workers. Each worker has the same TLS options.
|Command line option||Value|
| ||CA certificate file path|
| ||Client certificate file path|
| ||Client key file path|
| ||Enables TLS when connecting to Apache Kafka. Default is |
| ||Specifies whether a client verifies the server’s certificate chain and host name. If |
Options can be specified using the equivalent environment variables. The equivalent environment variable is all caps and separated by
_. For example,
KAFKA_TLS_CA_CERT_FILE is the environment variable for the
kafka-tls-ca-cert-file option. If the command line option and the environment variable are specified, the option takes precedence.