Creating a Kafka Permission Role
Scenario
Create and configure a Kafka role as an MRS cluster administrator.
This section applies to MRS 3.x or later.
Kafka roles can be created in clusters with Kerberos authentication enabled, but not in normal clusters.
If the current component uses Ranger for permission control, you need to configure permission management policies based on Ranger. For details, see Adding a Ranger Access Permission Policy for Kafka.
Procedure
- Log in to FusionInsight Manager and choose System > Permission > Role.
- On the displayed page, click Create Role and enter a Role Name and Description.
- On the Configure Resource Permission page, choose Name of the desired cluster > Kafka.
- Select permissions based on service requirements. For details about configuration items, see Table 1.
Table 1 Description Scenario
Role Authorization
Setting the Kafka administrator permissions
In the Configure Resource Permission table, choose Name of the desired cluster > Kafka > Kafka Manager Privileges.
NOTE:This permission allows you to create and delete topics, but does not allow you to produce or consume any topics.
Setting the production permission of a user on a topic
- In the Configure Resource Permission table, choose Name of the desired cluster > Kafka > Kafka Topic Producer And Consumer Privileges.
- In the Permission column of the specified topic, select Kafka Producer Permission.
Setting the consumption permission of a user on a topic
- In the Configure Resource Permission table, choose Name of the desired cluster > Kafka > Kafka Topic Producer And Consumer Privileges.
- In the Permission column of the specified topic, select Kafka Consumer Privileges.
- Click OK, and return to the Role page.
Feedback
Was this page helpful?
Provide feedbackThank you very much for your feedback. We will continue working to improve the documentation.See the reply and handling status in My Cloud VOC.
For any further questions, feel free to contact us through the chatbot.
Chatbot