RetroSearch Browse

Home - News ( United States | United Kingdom | Italy | Germany ) - Football scores

Showing content from https://docs.aws.amazon.com/msk/latest/developerguide/create-iam-role.html below:

Create an IAM role for topics on MSK Serverless cluster

In this step, you perform two tasks. The first task is to create an IAM policy that grants access to create topics on the cluster and to send data to those topics. The second task is to create an IAM role and associate this policy with it. In a later step, we create a client machine that assumes this role and uses it to create a topic on the cluster and to send data to that topic.

To create an IAM policy that makes it possible to create topics and write to them

Open the IAM console at https://console.aws.amazon.com/iam/.
On the navigation pane, choose Policies.
Choose Create Policy.

Choose the JSON tab, then replace the JSON in the editor window with the following JSON.

In the following example, replace the following:

region with the code of the AWS Region where you created your cluster.
Example account ID, 123456789012, with your AWS account ID.
msk-serverless-tutorial-cluster/c07c74ea-5146-4a03-add1-9baa787a5b14-s3 and msk-serverless-tutorial-cluster with your serverless cluster ID and topic name.

JSON

{
    "Version": "2012-10-17",
    "Statement": [
        {
            "Effect": "Allow",
            "Action": [
                "kafka-cluster:Connect",
                "kafka-cluster:DescribeCluster"
            ],
            "Resource": [
                "arn:aws:kafka:us-east-1:123456789012:cluster/msk-serverless-tutorial-cluster/c07c74ea-5146-4a03-add1-9baa787a5b14-s3"
            ]
        },
        {
            "Effect": "Allow",
            "Action": [
                "kafka-cluster:CreateTopic",
                "kafka-cluster:WriteData",
                "kafka-cluster:DescribeTopic"
            ],
            "Resource": [
            "arn:aws:kafka:us-east-1:123456789012:topic/msk-serverless-tutorial-cluster/*"
            ]
        }
    ]
}

For instructions about how to write secure policies, see IAM access control.

Choose Next: Tags.
Choose Next: Review.
For the policy name, enter a descriptive name, such as msk-serverless-tutorial-policy.
Choose Create policy.

To create an IAM role and attach the policy to it

On the navigation pane, choose Roles.
Choose Create role.
Under Common use cases, choose EC2, then choose Next: Permissions.
In the search box, enter the name of the policy that you previously created for this tutorial. Then select the box to the left of the policy.
Choose Next: Tags.
Choose Next: Review.
For the role name, enter a descriptive name, such as msk-serverless-tutorial-role.
Choose Create role.

Next Step

Create a client machine to access MSK Serverless cluster

Create a cluster

Create a client machine

Did this page help you? - Yes

Thanks for letting us know we're doing a good job!

If you've got a moment, please tell us what we did right so we can do more of it.

Did this page help you? - No

Thanks for letting us know this page needs work. We're sorry we let you down.

If you've got a moment, please tell us how we can make the documentation better.

RetroSearch is an open source project built by @garambo | Open a GitHub Issue

Search and Browse the WWW like it's 1997 | Search results from DuckDuckGo

HTML: 3.2 | Encoding: UTF-8 | Version: 0.7.4