I'm trying to get a Kafka cluster with Kraft off the ground. Plan to use it in production, and the Kafka documentation recommends not running a node in the "broker,controller" mode in production. So I'm splitting up the controllers and the brokers across multiple nodes.
The standard Kafka SSL options worked ok with nodes in "broker,controller" mode, but running just in "controller" mode, they seem to not get picked up at all.
Using the standard Kafka SSL options results in the process simply not picking up the certificate. Running openssl s_client shows that the process listening on the port doesn't return a certificate.
