Sign-in credentials authentication with AWS Secrets Manager

You can control access to your Amazon MSK clusters using sign-in credentials that are stored and secured using AWS Secrets Manager. Storing user credentials in Secrets Manager reduces the overhead of cluster authentication such as auditing, updating, and rotating credentials. Secrets Manager also lets you share user credentials across clusters.

This topic contains the following sections:

How sign-in credentials authentication works
Set up SASL/SCRAM authentication for an Amazon MSK cluster
Working with users
Limitations when using SCRAM secrets

Warning Javascript is disabled or is unavailable in your browser.

To use the Amazon Web Services Documentation, Javascript must be enabled. Please refer to your browser's Help pages for instructions.

Document Conventions

Produce and consume messages using authentication

How sign-in credentials authentication works