MSK - Error: kafka server: failed to create one or more ACL rules #270

Constantin07 · 2022-06-20T17:12:02Z

I'm trying to add the second principal with Admin permissions to AWS MSK cluster.

The principal which I'm using already has Admin privileges.

resource "kafka_acl" "admin2_cluster_alter" {
  resource_name       = "kafka-cluster"
  resource_type       = "Cluster"
  acl_principal       = "CN=Admin,OU=IT Department,O=Some Org,L=Location,ST=England,C=GB"
  acl_operation       = "Alter"
  acl_permission_type = "Allow"
  acl_host            = "*"
}

PS: The principal matches 100% certificate distinguished name.

Plan runs fine but when applied I'm getting:

kafka_acl.admin2_cluster_alter: Creating...

Error: kafka server: failed to create one or more ACL rules: kafka server: This most likely occurs because of a request being malformed by the client library or the message was sent to an incompatible broker. See the broker logs for more details

  with kafka_acl.admin2_cluster_alter,
  on admin.tf line 10, in resource "kafka_acl" "admin2_cluster_alter":
  10: resource "kafka_acl" "admin2_cluster_alter" {

Getting the same error for other Cluster Operations.

Has anyone come across this issue before ?

The text was updated successfully, but these errors were encountered:

Constantin07 · 2022-06-21T10:47:20Z

UPDATE: The root cause was missing User: in front of principal value.

Constantin07 closed this as completed Jun 21, 2022

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

MSK - Error: kafka server: failed to create one or more ACL rules #270

MSK - Error: kafka server: failed to create one or more ACL rules #270

Constantin07 commented Jun 20, 2022

Constantin07 commented Jun 21, 2022

MSK - Error: kafka server: failed to create one or more ACL rules #270

MSK - Error: kafka server: failed to create one or more ACL rules #270

Comments

Constantin07 commented Jun 20, 2022

Constantin07 commented Jun 21, 2022