Security in Event Stream Processor

Security in Event Stream Processor is managed centrally, by the cluster manager. All projects running in a cluster are subject to the security rules defined for that cluster.

Event Stream Processor integrates with existing Kerberos and LDAP security systems and provides built-in RSA certificate-based security. If you use RSA for security, users requesting server connections are required to provide a valid RSA key alias, keystore which contains a private key, and the password of the keystore. If you use LDAP or Kerberos for your security, users must have an LDAP or Kerberos user name and password.

LDAP supports role-based policy configuration. Further refine your security implementation by defining policies that provide or restrict access to a project or its resources, based on role. For example, you can define an administrator role that allows full access to all projects.

• Safeguarding Your Data
  Take additional measures to safeguard your data to provide redundancy and prevent unauthorized access.
• Authentication
  Confirm a user's identity using a set of credentials.
• Secure Sockets Layer (SSL) Connections
  Event Stream Processor supports SSL connections over the network to ensure the privacy of communication between client applications and ESP Server.
• Viewing the Security Log
  The security log file describes all the security changes, such as password changes, that have been made.