Kafka type

Expand all | Collapse all

Settings for a connector of the kafka type are described in the following tables.

Basic settings tab

Setting

Description

Name

Unique name of the resource. Maximum length of the name: 128 Unicode characters.

Required setting.

Tenant

The name of the tenant that owns the resource.

Required setting.

Type

Connector type. You need to select kafka.

Required setting.

URL

URL that you want to connect to. You can enter a URL in one of the following formats:

  • <host name>:<port number>
  • <IPv4 address>:<port number>
  • <IPv6 address>:<port number>

Topic

Subject of Kafka messages. Maximum length of the subject: 255 characters. You can use the following characters: a–z, A–Z, 0–9, ".", "_", and "-".

Authorization

Agents must be authorized to connect to the connector. Available values:

  • disabled. The default value.
  • PFX. When this option is selected, you must generate a PFX certificate with a private key in PKCS#12 container format in an external Certificate Authority, export the PFX certificate from the key store, and upload the PFX certificate to the KUMA web interface as a PFX secret.

    How to add a PFX secret?

  • plain. If this option is selected, you must indicate the secret containing user account credentials for authorization when connecting to the connector.

    How to add a secret?

GroupID.

The GroupID parameter for Kafka messages. Maximum length of the parameter: 255 characters. You can use the following characters: a–z, A–Z, 0–9, ".", "_", and "-".

Description

Description of the resource. Maximum length of the description: 4000 Unicode characters.

Advanced settings tab

Setting

Description

Size of message to fetch

Size of one message in the request, in bytes. The default value is 16 MB.

Maximum fetch wait time

Timeout for one message in seconds. The default value is 5 seconds.

Character encoding

Character encoding. The default value is UTF-8.

TLS mode

TLS encryption mode. Available values:

  • Disabled means TLS encryption is not used. The default value.
  • Enabled means TLS encryption is used, but certificates are not verified.
  • With verification means TLS encryption is used with verification of the certificate signed with the KUMA root certificate. The root certificate and key of KUMA are created automatically during application installation and are stored on the KUMA Core server in the folder /opt/kaspersky/kuma/core/certificates/.
  • Custom CA means TLS encryption is used with verification that the certificate was signed by a Certificate Authority. If you select this value, from the Custom CA drop-down list, select a secret with a certificate signed by the CA.

    How to create a certificate signed by a Certificate Authority?

    To use KUMA certificates on third-party devices, you must change the certificate file extension from CERT to CRT. Otherwise, you can get the x509: certificate signed by unknown authority error.

    When using TLS encryption, you cannot specify an IP address as the URL.

Debug

Resource logging. The toggle switch is turned off by default.

Page top