Data Exchange uses Confluent Kafka API to secure communication from Runtime Service to Kafka data store.
To enable secure connection,
Generate SSL key and certificate for each Kafka broker.
Note: Data Exchange accepts certificates and key files only in PEM format.
Create a Certificate Authority (CA) to sign the certificate.
Add the generated CA to the server trust store to enable the server to trust this CA.
Export the certificate from the server keystore and sign it with the CA.
Import both the certificate of the CA and the signed certificate into the keystore.
Add the following SSL configurations to the server properties file and provide appropriate values to the properties:
ssl.keystore.location
ssl.keystore.password
ssl.key.password
ssl.truststore.location
ssl.truststore.password
security.inter.broker.protocol
listeners
Copy the certificate chain of the Certificate Authority from the Kafka broker to the machine where you have installed Administrative Service.
While starting the transformation, turn on Secure Connection in the General Settings tab and provide the configuration details. For more details, refer to Data Exchange Runtime Administration and Operations Help.