KIP-417 — Allow JmxTool to connect to a secured RMI port
Accepted Kafka 2.3 AdminMetrics
Extends `JmxTool` (the `kafka-jmx.sh` CLI) with `--jmx-ssl-enable` and `--jmx-auth-prop` options to connect to JMX RMI ports secured with SSL and password authentication respectively. When JMX is configured with SSL or password auth, `JmxTool` fails with `ConnectIOException` because it uses a plain unauthenticated `JMXConnector`, making the tool unusable against secured production brokers.
Details
| Author | Fangbin Sun |
| Status | Accepted |
| Kafka Version | 2.3 |
| JIRA | KAFKA-7455 |
| Wiki | View on Apache Wiki |
| Created | 2019-01-16 |
| Last Modified | 2019-05-11 |
Explore how this KIP affects the Kafka protocol in the Protocol Explorer, or see the full KIP database.