.. _controlcenter_security:

|c3| Security
=============

Configuring security for |c3-short| requires planning and needs to be done carefully.
Because |c3-short| relies on |kconnect-long|, |ak-tm| brokers, |kstreams|, interceptors, 
and metrics reporters to work properly, there are numerous options that should 
be set depending on a particular environment or requirement.

Confluent recommends reviewing :ref:`Kafka Security<security>` and the associated 
components before configuring security for |c3-short|.

.. important::
    After a component is secured, it will be unable to communicate with other 
    non-secured components. For instance, if you have a secured |ak| broker and 
    a secured |c3-short|, but you have not secured |kconnect|,
    |c3-short| will behave sporadically when you attempt to use it. Be 
    sure to secure all components in your environment.

.. toctree::

  ssl
  sasl
  authentication
  c3-auth-ldap
  c3-rbac
  c3-rbac-roles