kafkactl icon indicating copy to clipboard operation
kafkactl copied to clipboard

Published 20 hours ago verified publisher icon deviceinsight

KafkaCtl with AWS MSK and IAM auth

Open Joel-PeakMetrics opened this issue 1 year ago • 3 comments

Hello,

I'd like to use KafkaCtl with AWS MSK. The MSK cluster is currently enabled with IAM auth only. Is there a way to enable kafkactl to use IAM SASL auth?

This configuration is working for the kafka java commands:

security.protocol=SASL_SSL
sasl.mechanism=AWS_MSK_IAM
sasl.jaas.config=software.amazon.msk.auth.iam.IAMLoginModule required;
sasl.client.callback.handler.class=software.amazon.msk.auth.iam.IAMClientCallbackHandler

Thanks for your help!

Joel-PeakMetrics avatar Jun 14 '23 19:06 Joel-PeakMetrics

Hi @Joel-PeakMetrics

that is currently not possible. There is an open issue (and a related PR) in the kafka library we use: https://github.com/Shopify/sarama/issues/1985

When something happens with that issue we can look into this again.

Regards

d-rk avatar Jun 15 '23 05:06 d-rk

@d-rk The IBM/sarama issue is now closed.

alahijani avatar Dec 21 '23 23:12 alahijani

It should now be possible to implement this using: https://github.com/aws/aws-msk-iam-sasl-signer-go

d-rk avatar Dec 23 '23 06:12 d-rk