Hello, We have Cloudera as the vendor for Kafka, and when they implemented Sentry for security they implemented two configurations.
1. Map an AD Group (Sentry Role) to map to a Topic to grant the specific permission (Read, Write, Describe etc.) 2. Map this AD Group (Sentry Role) to the Consumer Group in Kafka to grant which Consumer Group can Read from Kafka We believe that the Consumer Group feature is meant for Load Balancing, and not for Security, and hence it does not make sense to map an AD Group to Consumer Group for enforcing any Security constraints. Can you please clarify this conceptually, is consumer group designed for Scale or for Security? Thanks, George Barclaycard www.barclaycardus.com<http://www.barclaycardus.com> This email and any files transmitted with it may contain confidential and/or proprietary information. It is intended solely for the use of the individual or entity who is the intended recipient. Unauthorized use of this information is prohibited. If you have received this in error, please contact the sender by replying to this message and delete this material from any system it may be on.
