@aws-cdk_aws-msk-alpha.EncryptionInTransitConfig

interface EncryptionInTransitConfig ๐Ÿ”น

LanguageType name
.NETAmazon.CDK.AWS.MSK.Alpha.EncryptionInTransitConfig
Gogithub.com/aws/aws-cdk-go/awscdkmskalpha/v2#EncryptionInTransitConfig
Javasoftware.amazon.awscdk.services.msk.alpha.EncryptionInTransitConfig
Pythonaws_cdk.aws_msk_alpha.EncryptionInTransitConfig
TypeScript (source)@aws-cdk/aws-msk-alpha ยป EncryptionInTransitConfig

The settings for encrypting data in transit.

See also: https://docs.aws.amazon.com/msk/latest/developerguide/msk-encryption.html#msk-encryption-in-transit

Example

import * as acmpca from 'aws-cdk-lib/aws-acmpca';

declare const vpc: ec2.Vpc;
const cluster = new msk.Cluster(this, 'Cluster', {
  clusterName: 'myCluster',
  kafkaVersion: msk.KafkaVersion.V2_8_1,
  vpc,
  encryptionInTransit: {
    clientBroker: msk.ClientBrokerEncryption.TLS,
  },
  clientAuthentication: msk.ClientAuthentication.tls({
    certificateAuthorities: [
      acmpca.CertificateAuthority.fromCertificateAuthorityArn(
        this,
        'CertificateAuthority',
        'arn:aws:acm-pca:us-west-2:1234567890:certificate-authority/11111111-1111-1111-1111-111111111111',
      ),
    ],
  }),
});

Properties

NameTypeDescription
clientBroker?๐Ÿ”นClientBrokerEncryptionIndicates the encryption setting for data in transit between clients and brokers.
enableInCluster?๐Ÿ”นbooleanIndicates that data communication among the broker nodes of the cluster is encrypted.

clientBroker?๐Ÿ”น

Type: ClientBrokerEncryption (optional, default: TLS)

Indicates the encryption setting for data in transit between clients and brokers.


enableInCluster?๐Ÿ”น

Type: boolean (optional, default: true)

Indicates that data communication among the broker nodes of the cluster is encrypted.