Filebeat kafka ssl output

madhan_dhanikachalam · April 9, 2021, 12:28am

Trying to set up ssl kafka output in filebeat. reading a log file and sending to kafka.

non-ssl works fine. for ssl i am trying the below

#---- kafka output

output.kafka:
 # initial brokers for reading cluster metadata 
hosts: ["host1:9093", 
"host2:9093", "host3:9093"
ssl.certificate: /test/ssl/monitoring.crt
ssl.certificate_key: /test/ssl/monitoring.key
ssl.certificate_authorities: ["/test/ssl/digicertroot.cer"]

# message topic selection + partitioning
topic: 'filebeattest'
partition.round_robin:
reachable_only: false
required_acks: 1
compression: gzip
max_message_bytes: 1000000

I get the below error
ERROR instance/beat.go:958 Exiting: error initializing publisher: key file not
configured accessing 'output.kafka.ssl' (source:'filebeat.yml')
Exiting: error initializing publisher: key file not configured accessing
'output.kafka.ssl' (source:'filebeat.yml')

stephenb · April 9, 2021, 3:48am

Hi @madhan_dhanikachalam Welcome to the community.

First please make sure you format your yaml correctly.

You have several syntax issues.

hosts: ["host1:9093", 
"host2:9093", "host3:9093" <!---- Missing Closing Bracket and should be on the same line

Please review the SSL configuration Docs Here

Incorrect

ssl.certificate_key: /test/ssl/monitoring.key
ssl.certificate_authorities: ["/test/ssl/digicertroot.cer"]

should be

ssl.certificate.key: /test/ssl/monitoring.key
ssl.certificate.authorities: ["/test/ssl/digicertroot.cer"]

Fix those see what happens...

madhan_dhanikachalam · April 9, 2021, 3:25pm

indent preformatted text by 4 spaces
output.kafka:
  hosts: ["host1:9093","host2:9093", "host3:9093"]
  ssl.certificate: /test/ssl/monitoring.crt
  ssl.certificate.key: /test/ssl/monitoring.key
  ssl.certificate.authorities: ["/test/ssl/digicertroot.cer"]
  topic: 'filebeattest'
  partition.round_robin:
  reachable_only: false
  required_acks: 1
  compression: gzip
  max_message_bytes: 1000000

formatting was good, maybe it was just me pasting on the forum. Changed the config field and now i am getting the below error

Exiting: error loading config file: required 'object', but found 'string' in field 
'ssl.certificate' (source:'filebeat.yml')

madhan_dhanikachalam · April 9, 2021, 4:49pm

turns out

ssl.certificate.key: 
ssl.certificate.authorities:

should be

ssl.key:
ssl.authorities:

worked with this change.

stephenb · April 9, 2021, 5:12pm

Yep apologies cut n pasta error my side

system · May 7, 2021, 7:13pm

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Filebeat connect kafka failed over ssl Beats filebeat	4	3284	February 21, 2018
SSL communication between Filebeat 5.6.2 and Kafka 0.10 Beats filebeat	2	397	June 29, 2018
Filebeat ssl kafka Beats filebeat	2	990	May 3, 2018
SSL communication between Filebeat and Kafka Beats filebeat	6	3220	August 4, 2018
How to use SSL between Filebeat 5 and Kafka 0.10? Beats filebeat	2	1688	August 23, 2016

Filebeat kafka ssl output

Related topics