ssl.principal.mapping.rules — Kafka Broker Configuration
A list of rules for mapping from distinguished name from the client certificate to short name. The rules are evaluated in order and the first rule that matches a principal name is used to map it to a short name.
Description
A list of rules for mapping from distinguished name from the client certificate to short name. The rules are evaluated in order and the first rule that matches a principal name is used to map it to a short name. Any later rules in the list are ignored. By default, distinguished name of the X.500 certificate will be the principal. For more details on the format please see security authorization and acls. Note that this configuration is ignored if an extension of KafkaPrincipalBuilder is provided by the principal.builder.class configuration.
Default Values by Kafka Version
| Kafka Version | Default Value |
|---|---|
| 2.2 | DEFAULT |
| 2.3 | DEFAULT |
| 2.4 | DEFAULT |
| 2.5 | DEFAULT |
| 2.6 | DEFAULT |
| 2.7 | DEFAULT |
| 2.8 | DEFAULT |
| 3.0 | DEFAULT |
| 3.1 | DEFAULT |
| 3.2 | DEFAULT |
| 3.3 | DEFAULT |
| 3.4 | DEFAULT |
| 3.5 | DEFAULT |
| 3.6 | DEFAULT |
| 3.7 | DEFAULT |
| 3.8 | DEFAULT |
| 3.9 | DEFAULT |
| 4.0 | DEFAULT |
| 4.1 | DEFAULT |
| 4.2 | DEFAULT |