search
ProductsDownload Community Edition

AWS MSK

This page describes connection Lenses to a AWS MSK cluster.

circle-check

Lenses will not start without a valid Kafka Connection. You can either add the connection via the bootstrap wizard or use provisioning for automated deployments.

It is recommended to install Lenses on an EC2 instance or with EKS in the same VPC as your MSK cluster. Lenses can be installed and preconfigured via the AWS Marketplace.

hashtag
Open network connectivity

Edit the AWS MSK security group in the AWS Console and add the IP address of your Lenses installation.

MSK Security group

hashtag
Enable Open Monitoring

If you want to have Lenses collect JMX metrics you have to enable Open Monitoring on your MSK cluster. Follow the AWS guide herearrow-up-right.

hashtag
Select your MSK endpoint

Depending on your MSK cluster, select the endpoint and protocol you want to connect with.

circle-exclamation

It is not recommended to use Plaintext for secure environments. For these environments use TLS or IAM.

hashtag
Creating a Connection

In the Lenses bootstrap UI, Select:

  1. Security Protocol and set the protocol you want to use

  2. SASL Mechanism and set the mechanism you want to use.

hashtag
Connecting with AWS IAM

In the Lenses bootstrap UI, Select:

  1. Security Protocol and set it to SASL_SSL

  2. Sasl Mechanism and set it to AWS_MSK_IAM

  3. Add software.amazon.msk.auth.iam.IAMLoginModule required; to the Sasl Jaas Config section

  4. Optionally upload your trust store

  5. Set sasl.client.callback.handler.class=software.amazon.msk.auth.iam.IAMClientCallbackHandler in the Advances Kafka Properties section.

PreviousApache KafkaNextAWS MSK Serverless

Last updated

Was this helpful?