question Re: Kafka ACL authorizer for Active Directory in Archives of Support Questions (Read Only) https://community.cloudera.com/t5/Archives-of-Support-Questions/Kafka-ACL-authorizer-for-Active-Directory/m-p/59719#M67159 Your best bet would to use sentry to provide the authorization with kerberos and AD. You can use sssd on the linux nodes to make the AD users and groups available to kafka:<BR /><BR /><A href="https://www.cloudera.com/documentation/enterprise/latest/topics/sg_auth_overview.html" target="_blank">https://www.cloudera.com/documentation/enterprise/latest/topics/sg_auth_overview.html</A><BR /><BR /><A href="https://www.cloudera.com/documentation/kafka/latest/topics/kafka_security.html" target="_blank">https://www.cloudera.com/documentation/kafka/latest/topics/kafka_security.html</A><BR /><BR />-pd Fri, 08 Sep 2017 15:51:55 GMT pdvorak 2017-09-08T15:51:55Z Kafka ACL authorizer for Active Directory https://community.cloudera.com/t5/Archives-of-Support-Questions/Kafka-ACL-authorizer-for-Active-Directory/m-p/59162#M67158 <P>I'm using Cloudera enterprise and Kafka 0.10.x.</P><P>&nbsp;</P><P>To secure Kafka I've enabled Kerberos and configured Kafka to use the SimpleACLAuthorizer which stores ACLs in ZooKeeper.&nbsp; Instead of using this I'd like to check Active Directory instead to determine topic authorization.&nbsp; I can't seem to find an implementation.&nbsp; Does one exist?</P><P>&nbsp;</P> Fri, 16 Sep 2022 12:08:17 GMT https://community.cloudera.com/t5/Archives-of-Support-Questions/Kafka-ACL-authorizer-for-Active-Directory/m-p/59162#M67158 RichardK1967 2022-09-16T12:08:17Z Re: Kafka ACL authorizer for Active Directory https://community.cloudera.com/t5/Archives-of-Support-Questions/Kafka-ACL-authorizer-for-Active-Directory/m-p/59719#M67159 Your best bet would to use sentry to provide the authorization with kerberos and AD. You can use sssd on the linux nodes to make the AD users and groups available to kafka:<BR /><BR /><A href="https://www.cloudera.com/documentation/enterprise/latest/topics/sg_auth_overview.html" target="_blank">https://www.cloudera.com/documentation/enterprise/latest/topics/sg_auth_overview.html</A><BR /><BR /><A href="https://www.cloudera.com/documentation/kafka/latest/topics/kafka_security.html" target="_blank">https://www.cloudera.com/documentation/kafka/latest/topics/kafka_security.html</A><BR /><BR />-pd Fri, 08 Sep 2017 15:51:55 GMT https://community.cloudera.com/t5/Archives-of-Support-Questions/Kafka-ACL-authorizer-for-Active-Directory/m-p/59719#M67159 pdvorak 2017-09-08T15:51:55Z