AWS MSK configuration

If one of your brokers in cluster environment is located in Amazon MSK cluster you should specify saslMechanism, saslProtocol, saslJassConfig and saslCallbackHandler for this broker, like this:

kouncil:
  clusters:
    - name: transaction-cluster
      brokers:
        - host: 192.10.0.1
          port: 9092
          saslMechanism: AWS_MSK_IAM
          saslProtocol: SASL_SSL
          saslJassConfig: software.amazon.msk.auth.iam.IAMLoginModule required awsProfileName="username";
          saslCallbackHandler: software.amazon.msk.auth.iam.IAMClientCallbackHandler
        - host: 192.10.0.2
          port: 9093
        - host: 192.10.0.3
          port: 9094

Above configuration is using IAM access to Amazon MSK cluster and you should provide AWS_SECRET_ACCESS_KEY and AWS_ACCESS_KEY_ID as environment variables to Kouncil. And this two values should be generated to the user which has access to Amazon MSK cluster and his username should be provided in awsProfileName in Kouncil configuration.

PreviousBroker SSL configuration NextSchema Registry

Last updated 11 days ago