Configure LDAP authentication for Kafka brokers

Learn how to configure LDAP authentication for Kafka brokers.

You can enable Kafka to use LDAP credentials for client to broker authentication. Broker configuration is done by configuring the required properties in Cloudera Manager.

  1. In Cloudera Manager, select the Kafka service.
  2. Select Configuration.
  3. Enable LDAP authentication:
    1. Find the SASL/PLAIN Authentication property.
    2. Click the radio button next to LDAP. Do this for all required Kafka services.
  4. Configure the LDAP URL:
    1. FInd the LDAP URL property.
    2. Add your LDAP server URL.
      For example:
      ldap://cloudera.example.com:636 
  5. Configure the LDAP User DN Template:
    1. Find the LDAP User DN Template property.
    2. Add your template.
      For example:
      uid={0},cn=users,cn=account,dc=cloudera,dc=example,dc=com
  6. Click Save Changes.
  7. Restart the Kafka service.
LDAP authentication is configured for the brokers.
Configure clients to use LDAP authentication.