Open ffcactus opened 10 months ago
I think this issue is because Vector is acted as a single Kerberos client. If it needs to send message to different Kafka broker that belongs to different Kerberos realm, those two realm must be configured to use across realm authentication. However, sometimes it's impossible because physical network separation, or they belongs to different organizations.
Are we able to make Vector acts as multiple Kerberos clients when we have multiple Kafka sinks?
A note for the community
Problem
We use Vector to send message to 2 Kafka broker. These 2 brokers use Kerberos for authentication. No matter how we set the SASL or krb5.conf, there will be a kind of error message like this:
In the error message, AAA and BBB come from different realm, for example,
STGKAFKA100.REALM1.COM@KAFKA200.REALM2.COM
I was told that some Java library doesn't support multiple Kerberos realm. I'm not sure if Vector has same issue.
Configuration
Version
v0.32.0
Debug Output
No response
Example Data
No response
Additional Context
No response
References
No response