As of 15-09-2022, MD5 based Authentication is supported via this automation code.
Read documentation here: https://cwiki.apache.org/confluence/display/ZOOKEEPER/Server-Server+mutual+authentication
Update Following vars in inventory/<environment>/group_vars/all.yml
zookeeperQuorumAuthEnableSasl: false
zookeeperQuorumCnxnThreadsSize: 20
zookeeperQuorumUsername: "quorum"
zookeeperQuorumPassword: "IdontKnow"
Run Ansible Migration Playbook
ansible-playbook -i inventory/<environment>/cluster.ini clusterMigrateToSasLAuth.yml
Update Following vars in inventory/<environment>/group_vars/all.yml
zookeeperQuorumAuthEnableSasl: true
Make sure all changes are commited to your version control system.
zkCli.sh
warns about SASL Auth Error but stil manages to connect withzookeeper
2022-09-12 21:43:50,254 [myid:localhost:2181] - WARN [main-SendThread(localhost:2181):o.a.z.ClientCnxn$SendThread@1157] - SASL configuration failed. Will continue connection to Zookeeper server without SASL authentication, if Zookeeper server allows it.
javax.security.auth.login.LoginException: No JAAS configuration section named 'Client' was found in specified JAAS configuration file: '/zookeeper/zookeeper/conf/jaas.conf'.
at org.apache.zookeeper.client.ZooKeeperSaslClient.<init>(ZooKeeperSaslClient.java:189)
at org.apache.zookeeper.ClientCnxn$SendThread.startConnect(ClientCnxn.java:1151)
at org.apache.zookeeper.ClientCnxn$SendThread.run(ClientCnxn.java:1200)