Posted On: Mar 10, 2022

Amazon Lambda functions that are triggered from self-managed Apache Kafka topics can now access usernames and passwords secured by Amazon Secrets Manager using SASL/PLAIN, a simple username/password authentication mechanism that is typically used with TLS for encryption to implement secure authentication. This is in addition to SASL/SCRAM, which is already supported on Lambda. To get started, customers who select Apache Kafka as the event source for their Lambda function can choose SASL/PLAIN as their authentication mechanism, and select their credentials from Secrets Manager on the Amazon Web Services Management Console, Amazon CLI or Amazon SDK for Lambda. This feature requires no additional charge to use, and is available in Amazon Web Services China (Beijing) Region, operated by Sinnet, and Amazon Web Services China (Ningxia) Region, operated by NWCD. To learn more about using SASL/PLAIN authentication for your Lambda functions triggered from Amazon MSK topics, read the Lambda Developer Guide.