Posted On: Jun 4, 2024
Amazon Lambda now allows Lambda functions to authenticate with multi-VPC enabled Amazon Managed Streaming for Apache Kafka (Amazon MSK) clusters over Amazon Identity and Access Management (IAM). This allows you to easily establish IAM secured cross-account connectivity between Lambda functions and Amazon MSK clusters.
Customers use Lambda functions to process Kafka messages stored in Amazon MSK and use IAM access control for Amazon MSK to centralize and simplify access management to the MSK cluster. Previously, your Lambda functions could only use SASL/SCRAM or mutual TLS (mTLS) to authenticate with multi-VPC enabled MSK clusters. With this launch, your Lambda functions can use IAM access control for Amazon MSK to authenticate and authorize with multi-VPC enabled MSK clusters.
This feature is generally available in Amazon Web Services China (Beijing) Region, operated by Sinnet, and Amazon Web Services China (Ningxia) Region, operated by NWCD.
This feature is available at no additional charge. You pay for the Lambda function invocations triggered by a Kafka topic. To learn more, see the Lambda Developer Guide for Amazon MSK.