By using AWS re:Post, you agree to the AWS re:Post Terms of Use

IoT rules supporting MSK IAM?

1

A customer is using AWS IoT and would like to push data to MSK with IoT rules, but they state that they can only use SASL_SCRAM as IAM authentication is not supported for IoT rules. Are there plans to support this in the near future? Or what is the suggested turnaround?

1 Answer
1

In IOT core rules, the Apache Kafka (Kafka) action sends messages directly to your Amazon Managed Streaming for Apache Kafka (Amazon MSK) or self-managed Apache Kafka clusters for data analysis and visualization.

Reference : https://docs.aws.amazon.com/iot/latest/developerguide/apache-kafka-rule-action.html

To deliver messages from IoT devices to Amazon MSK using AWS IoT Core rule actions, you need to enable authentication on your Amazon MSK cluster. IoT rule actions can authenticate with your Amazon MSK cluster with username and password authentication using the SASL framework or by using TLS client authentication through AWS Certificate Manager. If anything changes, we will announce accordingly.

There are some good blogs with step by instructions to reference

  1. How to integrate AWS IoT Core with Amazon MSK - Reference : https://aws.amazon.com/blogs/iot/how-to-integrate-aws-iot-core-with-amazon-msk/
  2. Deliver data at scale to Amazon Managed Streaming for Apache Kafka (Amazon MSK) - Authentication section, chooses TLS client authentication through AWS certificate manager (ACM), and in the Private Certification Authorities (CA) from AWS Certificate Manager (ACM). Reference : https://aws.amazon.com/getting-started/hands-on/deliver-data-at-scale-to-amazon-msk-with-iot-core/
profile pictureAWS
EXPERT
answered 2 years ago

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Guidelines for Answering Questions