Cloudera Docs » 2.3.2 » Configuring Kafka for Kerberos Over Ambari
Configuring Kafka for Kerberos Over Ambari
Also available as:
PDF

Granting Permissions to a Producer

To grant permissions to a producer:

  • Grant WRITE permissions to the topic that the producer user will write to.

  • Grant DESCRIBE permission on the cluster.

Note: Optionally, if you have set auto.create.topics.enable to true and the topic is not created before starting the producer, you must also grant CREATE permission on the cluster.

Example:

The following two commands grant principal ambari-qa access as a producer, to topic test-topic, from host c6401.ambari.apache.org. The commands grant WRITE permission to the ambari-qa user on that topic, and DESCRIBE permission on the cluster:

./bin/kafka-acls.sh --topic test-topic --add --allowhosts c6401.ambari.apache.org --allowprincipals user:ambari-qa --operations WRITE --config /usr/hdp/current/kafka-broker/config/server.properties

./bin/kafka-acls.sh --cluster --add --allowhosts c6401.ambari.apache.org --allowprincipals user:ambari-qa --config /usr/hdp/current/kafka-broker/config/server.properties --operations DESCRIBE

© 2012–2021 by Cloudera, Inc.
Document licensed under the Creative Commons Attribution ShareAlike 4.0 License.
Cloudera.com | Documentation | Support | Community