Posted On: Nov 17, 2023
AWS Lambda now allows Lambda functions to authenticate with multi-VPC enabled Amazon Managed Streaming for Apache Kafka (Amazon MSK) clusters over AWS Identity and Access Management (IAM). This allows you to easily establish IAM secured cross-account connectivity between Lambda functions and Amazon MSK clusters.
Customers use Lambda functions to process Kafka messages stored in Amazon MSK and use IAM access control for Amazon MSK to centralize and simplify access management to the MSK cluster. Previously, your Lambda functions could only use SASL/SCRAM or mutual TLS (mTLS) to authenticate with multi-VPC enabled MSK clusters. With this launch, your Lambda functions can use IAM access control for Amazon MSK to authenticate and authorize with multi-VPC enabled MSK clusters.
This feature is generally available in all commercial Regions where AWS Lambda and Amazon MSK are generally available. For more information on availability, please see see the AWS Region table.
This feature is available at no additional charge. You pay for the Lambda function invocations triggered by a Kafka topic at standard regional rates. To learn more, visit our launch blog and see the Lambda Developer Guide for Amazon MSK.