1. Packages
  2. AWS Classic
  3. API Docs
  4. msk
  5. Cluster

Try AWS Native preview for resources not in the classic version.

AWS Classic v6.28.1 published on Thursday, Mar 28, 2024 by Pulumi

aws.msk.Cluster

Explore with Pulumi AI

aws logo

Try AWS Native preview for resources not in the classic version.

AWS Classic v6.28.1 published on Thursday, Mar 28, 2024 by Pulumi

    Manages an Amazon MSK cluster.

    Note: This resource manages provisioned clusters. To manage a serverless Amazon MSK cluster, use the aws.msk.ServerlessCluster resource.

    Example Usage

    Basic

    import * as pulumi from "@pulumi/pulumi";
    import * as aws from "@pulumi/aws";
    
    const vpc = new aws.ec2.Vpc("vpc", {cidrBlock: "192.168.0.0/22"});
    const azs = aws.getAvailabilityZones({
        state: "available",
    });
    const subnetAz1 = new aws.ec2.Subnet("subnet_az1", {
        availabilityZone: azs.then(azs => azs.names?.[0]),
        cidrBlock: "192.168.0.0/24",
        vpcId: vpc.id,
    });
    const subnetAz2 = new aws.ec2.Subnet("subnet_az2", {
        availabilityZone: azs.then(azs => azs.names?.[1]),
        cidrBlock: "192.168.1.0/24",
        vpcId: vpc.id,
    });
    const subnetAz3 = new aws.ec2.Subnet("subnet_az3", {
        availabilityZone: azs.then(azs => azs.names?.[2]),
        cidrBlock: "192.168.2.0/24",
        vpcId: vpc.id,
    });
    const sg = new aws.ec2.SecurityGroup("sg", {vpcId: vpc.id});
    const kms = new aws.kms.Key("kms", {description: "example"});
    const test = new aws.cloudwatch.LogGroup("test", {name: "msk_broker_logs"});
    const bucket = new aws.s3.BucketV2("bucket", {bucket: "msk-broker-logs-bucket"});
    const bucketAcl = new aws.s3.BucketAclV2("bucket_acl", {
        bucket: bucket.id,
        acl: "private",
    });
    const assumeRole = aws.iam.getPolicyDocument({
        statements: [{
            effect: "Allow",
            principals: [{
                type: "Service",
                identifiers: ["firehose.amazonaws.com"],
            }],
            actions: ["sts:AssumeRole"],
        }],
    });
    const firehoseRole = new aws.iam.Role("firehose_role", {
        name: "firehose_test_role",
        assumeRolePolicy: assumeRole.then(assumeRole => assumeRole.json),
    });
    const testStream = new aws.kinesis.FirehoseDeliveryStream("test_stream", {
        name: "kinesis-firehose-msk-broker-logs-stream",
        destination: "extended_s3",
        extendedS3Configuration: {
            roleArn: firehoseRole.arn,
            bucketArn: bucket.arn,
        },
        tags: {
            LogDeliveryEnabled: "placeholder",
        },
    });
    const example = new aws.msk.Cluster("example", {
        clusterName: "example",
        kafkaVersion: "3.2.0",
        numberOfBrokerNodes: 3,
        brokerNodeGroupInfo: {
            instanceType: "kafka.m5.large",
            clientSubnets: [
                subnetAz1.id,
                subnetAz2.id,
                subnetAz3.id,
            ],
            storageInfo: {
                ebsStorageInfo: {
                    volumeSize: 1000,
                },
            },
            securityGroups: [sg.id],
        },
        encryptionInfo: {
            encryptionAtRestKmsKeyArn: kms.arn,
        },
        openMonitoring: {
            prometheus: {
                jmxExporter: {
                    enabledInBroker: true,
                },
                nodeExporter: {
                    enabledInBroker: true,
                },
            },
        },
        loggingInfo: {
            brokerLogs: {
                cloudwatchLogs: {
                    enabled: true,
                    logGroup: test.name,
                },
                firehose: {
                    enabled: true,
                    deliveryStream: testStream.name,
                },
                s3: {
                    enabled: true,
                    bucket: bucket.id,
                    prefix: "logs/msk-",
                },
            },
        },
        tags: {
            foo: "bar",
        },
    });
    export const zookeeperConnectString = example.zookeeperConnectString;
    export const bootstrapBrokersTls = example.bootstrapBrokersTls;
    
    import pulumi
    import pulumi_aws as aws
    
    vpc = aws.ec2.Vpc("vpc", cidr_block="192.168.0.0/22")
    azs = aws.get_availability_zones(state="available")
    subnet_az1 = aws.ec2.Subnet("subnet_az1",
        availability_zone=azs.names[0],
        cidr_block="192.168.0.0/24",
        vpc_id=vpc.id)
    subnet_az2 = aws.ec2.Subnet("subnet_az2",
        availability_zone=azs.names[1],
        cidr_block="192.168.1.0/24",
        vpc_id=vpc.id)
    subnet_az3 = aws.ec2.Subnet("subnet_az3",
        availability_zone=azs.names[2],
        cidr_block="192.168.2.0/24",
        vpc_id=vpc.id)
    sg = aws.ec2.SecurityGroup("sg", vpc_id=vpc.id)
    kms = aws.kms.Key("kms", description="example")
    test = aws.cloudwatch.LogGroup("test", name="msk_broker_logs")
    bucket = aws.s3.BucketV2("bucket", bucket="msk-broker-logs-bucket")
    bucket_acl = aws.s3.BucketAclV2("bucket_acl",
        bucket=bucket.id,
        acl="private")
    assume_role = aws.iam.get_policy_document(statements=[aws.iam.GetPolicyDocumentStatementArgs(
        effect="Allow",
        principals=[aws.iam.GetPolicyDocumentStatementPrincipalArgs(
            type="Service",
            identifiers=["firehose.amazonaws.com"],
        )],
        actions=["sts:AssumeRole"],
    )])
    firehose_role = aws.iam.Role("firehose_role",
        name="firehose_test_role",
        assume_role_policy=assume_role.json)
    test_stream = aws.kinesis.FirehoseDeliveryStream("test_stream",
        name="kinesis-firehose-msk-broker-logs-stream",
        destination="extended_s3",
        extended_s3_configuration=aws.kinesis.FirehoseDeliveryStreamExtendedS3ConfigurationArgs(
            role_arn=firehose_role.arn,
            bucket_arn=bucket.arn,
        ),
        tags={
            "LogDeliveryEnabled": "placeholder",
        })
    example = aws.msk.Cluster("example",
        cluster_name="example",
        kafka_version="3.2.0",
        number_of_broker_nodes=3,
        broker_node_group_info=aws.msk.ClusterBrokerNodeGroupInfoArgs(
            instance_type="kafka.m5.large",
            client_subnets=[
                subnet_az1.id,
                subnet_az2.id,
                subnet_az3.id,
            ],
            storage_info=aws.msk.ClusterBrokerNodeGroupInfoStorageInfoArgs(
                ebs_storage_info=aws.msk.ClusterBrokerNodeGroupInfoStorageInfoEbsStorageInfoArgs(
                    volume_size=1000,
                ),
            ),
            security_groups=[sg.id],
        ),
        encryption_info=aws.msk.ClusterEncryptionInfoArgs(
            encryption_at_rest_kms_key_arn=kms.arn,
        ),
        open_monitoring=aws.msk.ClusterOpenMonitoringArgs(
            prometheus=aws.msk.ClusterOpenMonitoringPrometheusArgs(
                jmx_exporter=aws.msk.ClusterOpenMonitoringPrometheusJmxExporterArgs(
                    enabled_in_broker=True,
                ),
                node_exporter=aws.msk.ClusterOpenMonitoringPrometheusNodeExporterArgs(
                    enabled_in_broker=True,
                ),
            ),
        ),
        logging_info=aws.msk.ClusterLoggingInfoArgs(
            broker_logs=aws.msk.ClusterLoggingInfoBrokerLogsArgs(
                cloudwatch_logs=aws.msk.ClusterLoggingInfoBrokerLogsCloudwatchLogsArgs(
                    enabled=True,
                    log_group=test.name,
                ),
                firehose=aws.msk.ClusterLoggingInfoBrokerLogsFirehoseArgs(
                    enabled=True,
                    delivery_stream=test_stream.name,
                ),
                s3=aws.msk.ClusterLoggingInfoBrokerLogsS3Args(
                    enabled=True,
                    bucket=bucket.id,
                    prefix="logs/msk-",
                ),
            ),
        ),
        tags={
            "foo": "bar",
        })
    pulumi.export("zookeeperConnectString", example.zookeeper_connect_string)
    pulumi.export("bootstrapBrokersTls", example.bootstrap_brokers_tls)
    
    package main
    
    import (
    	"github.com/pulumi/pulumi-aws/sdk/v6/go/aws"
    	"github.com/pulumi/pulumi-aws/sdk/v6/go/aws/cloudwatch"
    	"github.com/pulumi/pulumi-aws/sdk/v6/go/aws/ec2"
    	"github.com/pulumi/pulumi-aws/sdk/v6/go/aws/iam"
    	"github.com/pulumi/pulumi-aws/sdk/v6/go/aws/kinesis"
    	"github.com/pulumi/pulumi-aws/sdk/v6/go/aws/kms"
    	"github.com/pulumi/pulumi-aws/sdk/v6/go/aws/msk"
    	"github.com/pulumi/pulumi-aws/sdk/v6/go/aws/s3"
    	"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
    )
    
    func main() {
    	pulumi.Run(func(ctx *pulumi.Context) error {
    		vpc, err := ec2.NewVpc(ctx, "vpc", &ec2.VpcArgs{
    			CidrBlock: pulumi.String("192.168.0.0/22"),
    		})
    		if err != nil {
    			return err
    		}
    		azs, err := aws.GetAvailabilityZones(ctx, &aws.GetAvailabilityZonesArgs{
    			State: pulumi.StringRef("available"),
    		}, nil)
    		if err != nil {
    			return err
    		}
    		subnetAz1, err := ec2.NewSubnet(ctx, "subnet_az1", &ec2.SubnetArgs{
    			AvailabilityZone: pulumi.String(azs.Names[0]),
    			CidrBlock:        pulumi.String("192.168.0.0/24"),
    			VpcId:            vpc.ID(),
    		})
    		if err != nil {
    			return err
    		}
    		subnetAz2, err := ec2.NewSubnet(ctx, "subnet_az2", &ec2.SubnetArgs{
    			AvailabilityZone: pulumi.String(azs.Names[1]),
    			CidrBlock:        pulumi.String("192.168.1.0/24"),
    			VpcId:            vpc.ID(),
    		})
    		if err != nil {
    			return err
    		}
    		subnetAz3, err := ec2.NewSubnet(ctx, "subnet_az3", &ec2.SubnetArgs{
    			AvailabilityZone: pulumi.String(azs.Names[2]),
    			CidrBlock:        pulumi.String("192.168.2.0/24"),
    			VpcId:            vpc.ID(),
    		})
    		if err != nil {
    			return err
    		}
    		sg, err := ec2.NewSecurityGroup(ctx, "sg", &ec2.SecurityGroupArgs{
    			VpcId: vpc.ID(),
    		})
    		if err != nil {
    			return err
    		}
    		kms, err := kms.NewKey(ctx, "kms", &kms.KeyArgs{
    			Description: pulumi.String("example"),
    		})
    		if err != nil {
    			return err
    		}
    		test, err := cloudwatch.NewLogGroup(ctx, "test", &cloudwatch.LogGroupArgs{
    			Name: pulumi.String("msk_broker_logs"),
    		})
    		if err != nil {
    			return err
    		}
    		bucket, err := s3.NewBucketV2(ctx, "bucket", &s3.BucketV2Args{
    			Bucket: pulumi.String("msk-broker-logs-bucket"),
    		})
    		if err != nil {
    			return err
    		}
    		_, err = s3.NewBucketAclV2(ctx, "bucket_acl", &s3.BucketAclV2Args{
    			Bucket: bucket.ID(),
    			Acl:    pulumi.String("private"),
    		})
    		if err != nil {
    			return err
    		}
    		assumeRole, err := iam.GetPolicyDocument(ctx, &iam.GetPolicyDocumentArgs{
    			Statements: []iam.GetPolicyDocumentStatement{
    				{
    					Effect: pulumi.StringRef("Allow"),
    					Principals: []iam.GetPolicyDocumentStatementPrincipal{
    						{
    							Type: "Service",
    							Identifiers: []string{
    								"firehose.amazonaws.com",
    							},
    						},
    					},
    					Actions: []string{
    						"sts:AssumeRole",
    					},
    				},
    			},
    		}, nil)
    		if err != nil {
    			return err
    		}
    		firehoseRole, err := iam.NewRole(ctx, "firehose_role", &iam.RoleArgs{
    			Name:             pulumi.String("firehose_test_role"),
    			AssumeRolePolicy: pulumi.String(assumeRole.Json),
    		})
    		if err != nil {
    			return err
    		}
    		testStream, err := kinesis.NewFirehoseDeliveryStream(ctx, "test_stream", &kinesis.FirehoseDeliveryStreamArgs{
    			Name:        pulumi.String("kinesis-firehose-msk-broker-logs-stream"),
    			Destination: pulumi.String("extended_s3"),
    			ExtendedS3Configuration: &kinesis.FirehoseDeliveryStreamExtendedS3ConfigurationArgs{
    				RoleArn:   firehoseRole.Arn,
    				BucketArn: bucket.Arn,
    			},
    			Tags: pulumi.StringMap{
    				"LogDeliveryEnabled": pulumi.String("placeholder"),
    			},
    		})
    		if err != nil {
    			return err
    		}
    		example, err := msk.NewCluster(ctx, "example", &msk.ClusterArgs{
    			ClusterName:         pulumi.String("example"),
    			KafkaVersion:        pulumi.String("3.2.0"),
    			NumberOfBrokerNodes: pulumi.Int(3),
    			BrokerNodeGroupInfo: &msk.ClusterBrokerNodeGroupInfoArgs{
    				InstanceType: pulumi.String("kafka.m5.large"),
    				ClientSubnets: pulumi.StringArray{
    					subnetAz1.ID(),
    					subnetAz2.ID(),
    					subnetAz3.ID(),
    				},
    				StorageInfo: &msk.ClusterBrokerNodeGroupInfoStorageInfoArgs{
    					EbsStorageInfo: &msk.ClusterBrokerNodeGroupInfoStorageInfoEbsStorageInfoArgs{
    						VolumeSize: pulumi.Int(1000),
    					},
    				},
    				SecurityGroups: pulumi.StringArray{
    					sg.ID(),
    				},
    			},
    			EncryptionInfo: &msk.ClusterEncryptionInfoArgs{
    				EncryptionAtRestKmsKeyArn: kms.Arn,
    			},
    			OpenMonitoring: &msk.ClusterOpenMonitoringArgs{
    				Prometheus: &msk.ClusterOpenMonitoringPrometheusArgs{
    					JmxExporter: &msk.ClusterOpenMonitoringPrometheusJmxExporterArgs{
    						EnabledInBroker: pulumi.Bool(true),
    					},
    					NodeExporter: &msk.ClusterOpenMonitoringPrometheusNodeExporterArgs{
    						EnabledInBroker: pulumi.Bool(true),
    					},
    				},
    			},
    			LoggingInfo: &msk.ClusterLoggingInfoArgs{
    				BrokerLogs: &msk.ClusterLoggingInfoBrokerLogsArgs{
    					CloudwatchLogs: &msk.ClusterLoggingInfoBrokerLogsCloudwatchLogsArgs{
    						Enabled:  pulumi.Bool(true),
    						LogGroup: test.Name,
    					},
    					Firehose: &msk.ClusterLoggingInfoBrokerLogsFirehoseArgs{
    						Enabled:        pulumi.Bool(true),
    						DeliveryStream: testStream.Name,
    					},
    					S3: &msk.ClusterLoggingInfoBrokerLogsS3Args{
    						Enabled: pulumi.Bool(true),
    						Bucket:  bucket.ID(),
    						Prefix:  pulumi.String("logs/msk-"),
    					},
    				},
    			},
    			Tags: pulumi.StringMap{
    				"foo": pulumi.String("bar"),
    			},
    		})
    		if err != nil {
    			return err
    		}
    		ctx.Export("zookeeperConnectString", example.ZookeeperConnectString)
    		ctx.Export("bootstrapBrokersTls", example.BootstrapBrokersTls)
    		return nil
    	})
    }
    
    using System.Collections.Generic;
    using System.Linq;
    using Pulumi;
    using Aws = Pulumi.Aws;
    
    return await Deployment.RunAsync(() => 
    {
        var vpc = new Aws.Ec2.Vpc("vpc", new()
        {
            CidrBlock = "192.168.0.0/22",
        });
    
        var azs = Aws.GetAvailabilityZones.Invoke(new()
        {
            State = "available",
        });
    
        var subnetAz1 = new Aws.Ec2.Subnet("subnet_az1", new()
        {
            AvailabilityZone = azs.Apply(getAvailabilityZonesResult => getAvailabilityZonesResult.Names[0]),
            CidrBlock = "192.168.0.0/24",
            VpcId = vpc.Id,
        });
    
        var subnetAz2 = new Aws.Ec2.Subnet("subnet_az2", new()
        {
            AvailabilityZone = azs.Apply(getAvailabilityZonesResult => getAvailabilityZonesResult.Names[1]),
            CidrBlock = "192.168.1.0/24",
            VpcId = vpc.Id,
        });
    
        var subnetAz3 = new Aws.Ec2.Subnet("subnet_az3", new()
        {
            AvailabilityZone = azs.Apply(getAvailabilityZonesResult => getAvailabilityZonesResult.Names[2]),
            CidrBlock = "192.168.2.0/24",
            VpcId = vpc.Id,
        });
    
        var sg = new Aws.Ec2.SecurityGroup("sg", new()
        {
            VpcId = vpc.Id,
        });
    
        var kms = new Aws.Kms.Key("kms", new()
        {
            Description = "example",
        });
    
        var test = new Aws.CloudWatch.LogGroup("test", new()
        {
            Name = "msk_broker_logs",
        });
    
        var bucket = new Aws.S3.BucketV2("bucket", new()
        {
            Bucket = "msk-broker-logs-bucket",
        });
    
        var bucketAcl = new Aws.S3.BucketAclV2("bucket_acl", new()
        {
            Bucket = bucket.Id,
            Acl = "private",
        });
    
        var assumeRole = Aws.Iam.GetPolicyDocument.Invoke(new()
        {
            Statements = new[]
            {
                new Aws.Iam.Inputs.GetPolicyDocumentStatementInputArgs
                {
                    Effect = "Allow",
                    Principals = new[]
                    {
                        new Aws.Iam.Inputs.GetPolicyDocumentStatementPrincipalInputArgs
                        {
                            Type = "Service",
                            Identifiers = new[]
                            {
                                "firehose.amazonaws.com",
                            },
                        },
                    },
                    Actions = new[]
                    {
                        "sts:AssumeRole",
                    },
                },
            },
        });
    
        var firehoseRole = new Aws.Iam.Role("firehose_role", new()
        {
            Name = "firehose_test_role",
            AssumeRolePolicy = assumeRole.Apply(getPolicyDocumentResult => getPolicyDocumentResult.Json),
        });
    
        var testStream = new Aws.Kinesis.FirehoseDeliveryStream("test_stream", new()
        {
            Name = "kinesis-firehose-msk-broker-logs-stream",
            Destination = "extended_s3",
            ExtendedS3Configuration = new Aws.Kinesis.Inputs.FirehoseDeliveryStreamExtendedS3ConfigurationArgs
            {
                RoleArn = firehoseRole.Arn,
                BucketArn = bucket.Arn,
            },
            Tags = 
            {
                { "LogDeliveryEnabled", "placeholder" },
            },
        });
    
        var example = new Aws.Msk.Cluster("example", new()
        {
            ClusterName = "example",
            KafkaVersion = "3.2.0",
            NumberOfBrokerNodes = 3,
            BrokerNodeGroupInfo = new Aws.Msk.Inputs.ClusterBrokerNodeGroupInfoArgs
            {
                InstanceType = "kafka.m5.large",
                ClientSubnets = new[]
                {
                    subnetAz1.Id,
                    subnetAz2.Id,
                    subnetAz3.Id,
                },
                StorageInfo = new Aws.Msk.Inputs.ClusterBrokerNodeGroupInfoStorageInfoArgs
                {
                    EbsStorageInfo = new Aws.Msk.Inputs.ClusterBrokerNodeGroupInfoStorageInfoEbsStorageInfoArgs
                    {
                        VolumeSize = 1000,
                    },
                },
                SecurityGroups = new[]
                {
                    sg.Id,
                },
            },
            EncryptionInfo = new Aws.Msk.Inputs.ClusterEncryptionInfoArgs
            {
                EncryptionAtRestKmsKeyArn = kms.Arn,
            },
            OpenMonitoring = new Aws.Msk.Inputs.ClusterOpenMonitoringArgs
            {
                Prometheus = new Aws.Msk.Inputs.ClusterOpenMonitoringPrometheusArgs
                {
                    JmxExporter = new Aws.Msk.Inputs.ClusterOpenMonitoringPrometheusJmxExporterArgs
                    {
                        EnabledInBroker = true,
                    },
                    NodeExporter = new Aws.Msk.Inputs.ClusterOpenMonitoringPrometheusNodeExporterArgs
                    {
                        EnabledInBroker = true,
                    },
                },
            },
            LoggingInfo = new Aws.Msk.Inputs.ClusterLoggingInfoArgs
            {
                BrokerLogs = new Aws.Msk.Inputs.ClusterLoggingInfoBrokerLogsArgs
                {
                    CloudwatchLogs = new Aws.Msk.Inputs.ClusterLoggingInfoBrokerLogsCloudwatchLogsArgs
                    {
                        Enabled = true,
                        LogGroup = test.Name,
                    },
                    Firehose = new Aws.Msk.Inputs.ClusterLoggingInfoBrokerLogsFirehoseArgs
                    {
                        Enabled = true,
                        DeliveryStream = testStream.Name,
                    },
                    S3 = new Aws.Msk.Inputs.ClusterLoggingInfoBrokerLogsS3Args
                    {
                        Enabled = true,
                        Bucket = bucket.Id,
                        Prefix = "logs/msk-",
                    },
                },
            },
            Tags = 
            {
                { "foo", "bar" },
            },
        });
    
        return new Dictionary<string, object?>
        {
            ["zookeeperConnectString"] = example.ZookeeperConnectString,
            ["bootstrapBrokersTls"] = example.BootstrapBrokersTls,
        };
    });
    
    package generated_program;
    
    import com.pulumi.Context;
    import com.pulumi.Pulumi;
    import com.pulumi.core.Output;
    import com.pulumi.aws.ec2.Vpc;
    import com.pulumi.aws.ec2.VpcArgs;
    import com.pulumi.aws.AwsFunctions;
    import com.pulumi.aws.inputs.GetAvailabilityZonesArgs;
    import com.pulumi.aws.ec2.Subnet;
    import com.pulumi.aws.ec2.SubnetArgs;
    import com.pulumi.aws.ec2.SecurityGroup;
    import com.pulumi.aws.ec2.SecurityGroupArgs;
    import com.pulumi.aws.kms.Key;
    import com.pulumi.aws.kms.KeyArgs;
    import com.pulumi.aws.cloudwatch.LogGroup;
    import com.pulumi.aws.cloudwatch.LogGroupArgs;
    import com.pulumi.aws.s3.BucketV2;
    import com.pulumi.aws.s3.BucketV2Args;
    import com.pulumi.aws.s3.BucketAclV2;
    import com.pulumi.aws.s3.BucketAclV2Args;
    import com.pulumi.aws.iam.IamFunctions;
    import com.pulumi.aws.iam.inputs.GetPolicyDocumentArgs;
    import com.pulumi.aws.iam.Role;
    import com.pulumi.aws.iam.RoleArgs;
    import com.pulumi.aws.kinesis.FirehoseDeliveryStream;
    import com.pulumi.aws.kinesis.FirehoseDeliveryStreamArgs;
    import com.pulumi.aws.kinesis.inputs.FirehoseDeliveryStreamExtendedS3ConfigurationArgs;
    import com.pulumi.aws.msk.Cluster;
    import com.pulumi.aws.msk.ClusterArgs;
    import com.pulumi.aws.msk.inputs.ClusterBrokerNodeGroupInfoArgs;
    import com.pulumi.aws.msk.inputs.ClusterBrokerNodeGroupInfoStorageInfoArgs;
    import com.pulumi.aws.msk.inputs.ClusterBrokerNodeGroupInfoStorageInfoEbsStorageInfoArgs;
    import com.pulumi.aws.msk.inputs.ClusterEncryptionInfoArgs;
    import com.pulumi.aws.msk.inputs.ClusterOpenMonitoringArgs;
    import com.pulumi.aws.msk.inputs.ClusterOpenMonitoringPrometheusArgs;
    import com.pulumi.aws.msk.inputs.ClusterOpenMonitoringPrometheusJmxExporterArgs;
    import com.pulumi.aws.msk.inputs.ClusterOpenMonitoringPrometheusNodeExporterArgs;
    import com.pulumi.aws.msk.inputs.ClusterLoggingInfoArgs;
    import com.pulumi.aws.msk.inputs.ClusterLoggingInfoBrokerLogsArgs;
    import com.pulumi.aws.msk.inputs.ClusterLoggingInfoBrokerLogsCloudwatchLogsArgs;
    import com.pulumi.aws.msk.inputs.ClusterLoggingInfoBrokerLogsFirehoseArgs;
    import com.pulumi.aws.msk.inputs.ClusterLoggingInfoBrokerLogsS3Args;
    import java.util.List;
    import java.util.ArrayList;
    import java.util.Map;
    import java.io.File;
    import java.nio.file.Files;
    import java.nio.file.Paths;
    
    public class App {
        public static void main(String[] args) {
            Pulumi.run(App::stack);
        }
    
        public static void stack(Context ctx) {
            var vpc = new Vpc("vpc", VpcArgs.builder()        
                .cidrBlock("192.168.0.0/22")
                .build());
    
            final var azs = AwsFunctions.getAvailabilityZones(GetAvailabilityZonesArgs.builder()
                .state("available")
                .build());
    
            var subnetAz1 = new Subnet("subnetAz1", SubnetArgs.builder()        
                .availabilityZone(azs.applyValue(getAvailabilityZonesResult -> getAvailabilityZonesResult.names()[0]))
                .cidrBlock("192.168.0.0/24")
                .vpcId(vpc.id())
                .build());
    
            var subnetAz2 = new Subnet("subnetAz2", SubnetArgs.builder()        
                .availabilityZone(azs.applyValue(getAvailabilityZonesResult -> getAvailabilityZonesResult.names()[1]))
                .cidrBlock("192.168.1.0/24")
                .vpcId(vpc.id())
                .build());
    
            var subnetAz3 = new Subnet("subnetAz3", SubnetArgs.builder()        
                .availabilityZone(azs.applyValue(getAvailabilityZonesResult -> getAvailabilityZonesResult.names()[2]))
                .cidrBlock("192.168.2.0/24")
                .vpcId(vpc.id())
                .build());
    
            var sg = new SecurityGroup("sg", SecurityGroupArgs.builder()        
                .vpcId(vpc.id())
                .build());
    
            var kms = new Key("kms", KeyArgs.builder()        
                .description("example")
                .build());
    
            var test = new LogGroup("test", LogGroupArgs.builder()        
                .name("msk_broker_logs")
                .build());
    
            var bucket = new BucketV2("bucket", BucketV2Args.builder()        
                .bucket("msk-broker-logs-bucket")
                .build());
    
            var bucketAcl = new BucketAclV2("bucketAcl", BucketAclV2Args.builder()        
                .bucket(bucket.id())
                .acl("private")
                .build());
    
            final var assumeRole = IamFunctions.getPolicyDocument(GetPolicyDocumentArgs.builder()
                .statements(GetPolicyDocumentStatementArgs.builder()
                    .effect("Allow")
                    .principals(GetPolicyDocumentStatementPrincipalArgs.builder()
                        .type("Service")
                        .identifiers("firehose.amazonaws.com")
                        .build())
                    .actions("sts:AssumeRole")
                    .build())
                .build());
    
            var firehoseRole = new Role("firehoseRole", RoleArgs.builder()        
                .name("firehose_test_role")
                .assumeRolePolicy(assumeRole.applyValue(getPolicyDocumentResult -> getPolicyDocumentResult.json()))
                .build());
    
            var testStream = new FirehoseDeliveryStream("testStream", FirehoseDeliveryStreamArgs.builder()        
                .name("kinesis-firehose-msk-broker-logs-stream")
                .destination("extended_s3")
                .extendedS3Configuration(FirehoseDeliveryStreamExtendedS3ConfigurationArgs.builder()
                    .roleArn(firehoseRole.arn())
                    .bucketArn(bucket.arn())
                    .build())
                .tags(Map.of("LogDeliveryEnabled", "placeholder"))
                .build());
    
            var example = new Cluster("example", ClusterArgs.builder()        
                .clusterName("example")
                .kafkaVersion("3.2.0")
                .numberOfBrokerNodes(3)
                .brokerNodeGroupInfo(ClusterBrokerNodeGroupInfoArgs.builder()
                    .instanceType("kafka.m5.large")
                    .clientSubnets(                
                        subnetAz1.id(),
                        subnetAz2.id(),
                        subnetAz3.id())
                    .storageInfo(ClusterBrokerNodeGroupInfoStorageInfoArgs.builder()
                        .ebsStorageInfo(ClusterBrokerNodeGroupInfoStorageInfoEbsStorageInfoArgs.builder()
                            .volumeSize(1000)
                            .build())
                        .build())
                    .securityGroups(sg.id())
                    .build())
                .encryptionInfo(ClusterEncryptionInfoArgs.builder()
                    .encryptionAtRestKmsKeyArn(kms.arn())
                    .build())
                .openMonitoring(ClusterOpenMonitoringArgs.builder()
                    .prometheus(ClusterOpenMonitoringPrometheusArgs.builder()
                        .jmxExporter(ClusterOpenMonitoringPrometheusJmxExporterArgs.builder()
                            .enabledInBroker(true)
                            .build())
                        .nodeExporter(ClusterOpenMonitoringPrometheusNodeExporterArgs.builder()
                            .enabledInBroker(true)
                            .build())
                        .build())
                    .build())
                .loggingInfo(ClusterLoggingInfoArgs.builder()
                    .brokerLogs(ClusterLoggingInfoBrokerLogsArgs.builder()
                        .cloudwatchLogs(ClusterLoggingInfoBrokerLogsCloudwatchLogsArgs.builder()
                            .enabled(true)
                            .logGroup(test.name())
                            .build())
                        .firehose(ClusterLoggingInfoBrokerLogsFirehoseArgs.builder()
                            .enabled(true)
                            .deliveryStream(testStream.name())
                            .build())
                        .s3(ClusterLoggingInfoBrokerLogsS3Args.builder()
                            .enabled(true)
                            .bucket(bucket.id())
                            .prefix("logs/msk-")
                            .build())
                        .build())
                    .build())
                .tags(Map.of("foo", "bar"))
                .build());
    
            ctx.export("zookeeperConnectString", example.zookeeperConnectString());
            ctx.export("bootstrapBrokersTls", example.bootstrapBrokersTls());
        }
    }
    
    resources:
      vpc:
        type: aws:ec2:Vpc
        properties:
          cidrBlock: 192.168.0.0/22
      subnetAz1:
        type: aws:ec2:Subnet
        name: subnet_az1
        properties:
          availabilityZone: ${azs.names[0]}
          cidrBlock: 192.168.0.0/24
          vpcId: ${vpc.id}
      subnetAz2:
        type: aws:ec2:Subnet
        name: subnet_az2
        properties:
          availabilityZone: ${azs.names[1]}
          cidrBlock: 192.168.1.0/24
          vpcId: ${vpc.id}
      subnetAz3:
        type: aws:ec2:Subnet
        name: subnet_az3
        properties:
          availabilityZone: ${azs.names[2]}
          cidrBlock: 192.168.2.0/24
          vpcId: ${vpc.id}
      sg:
        type: aws:ec2:SecurityGroup
        properties:
          vpcId: ${vpc.id}
      kms:
        type: aws:kms:Key
        properties:
          description: example
      test:
        type: aws:cloudwatch:LogGroup
        properties:
          name: msk_broker_logs
      bucket:
        type: aws:s3:BucketV2
        properties:
          bucket: msk-broker-logs-bucket
      bucketAcl:
        type: aws:s3:BucketAclV2
        name: bucket_acl
        properties:
          bucket: ${bucket.id}
          acl: private
      firehoseRole:
        type: aws:iam:Role
        name: firehose_role
        properties:
          name: firehose_test_role
          assumeRolePolicy: ${assumeRole.json}
      testStream:
        type: aws:kinesis:FirehoseDeliveryStream
        name: test_stream
        properties:
          name: kinesis-firehose-msk-broker-logs-stream
          destination: extended_s3
          extendedS3Configuration:
            roleArn: ${firehoseRole.arn}
            bucketArn: ${bucket.arn}
          tags:
            LogDeliveryEnabled: placeholder
      example:
        type: aws:msk:Cluster
        properties:
          clusterName: example
          kafkaVersion: 3.2.0
          numberOfBrokerNodes: 3
          brokerNodeGroupInfo:
            instanceType: kafka.m5.large
            clientSubnets:
              - ${subnetAz1.id}
              - ${subnetAz2.id}
              - ${subnetAz3.id}
            storageInfo:
              ebsStorageInfo:
                volumeSize: 1000
            securityGroups:
              - ${sg.id}
          encryptionInfo:
            encryptionAtRestKmsKeyArn: ${kms.arn}
          openMonitoring:
            prometheus:
              jmxExporter:
                enabledInBroker: true
              nodeExporter:
                enabledInBroker: true
          loggingInfo:
            brokerLogs:
              cloudwatchLogs:
                enabled: true
                logGroup: ${test.name}
              firehose:
                enabled: true
                deliveryStream: ${testStream.name}
              s3:
                enabled: true
                bucket: ${bucket.id}
                prefix: logs/msk-
          tags:
            foo: bar
    variables:
      azs:
        fn::invoke:
          Function: aws:getAvailabilityZones
          Arguments:
            state: available
      assumeRole:
        fn::invoke:
          Function: aws:iam:getPolicyDocument
          Arguments:
            statements:
              - effect: Allow
                principals:
                  - type: Service
                    identifiers:
                      - firehose.amazonaws.com
                actions:
                  - sts:AssumeRole
    outputs:
      zookeeperConnectString: ${example.zookeeperConnectString}
      bootstrapBrokersTls: ${example.bootstrapBrokersTls}
    

    With volume_throughput argument

    import * as pulumi from "@pulumi/pulumi";
    import * as aws from "@pulumi/aws";
    
    const example = new aws.msk.Cluster("example", {
        clusterName: "example",
        kafkaVersion: "2.7.1",
        numberOfBrokerNodes: 3,
        brokerNodeGroupInfo: {
            instanceType: "kafka.m5.4xlarge",
            clientSubnets: [
                subnetAz1.id,
                subnetAz2.id,
                subnetAz3.id,
            ],
            storageInfo: {
                ebsStorageInfo: {
                    provisionedThroughput: {
                        enabled: true,
                        volumeThroughput: 250,
                    },
                    volumeSize: 1000,
                },
            },
            securityGroups: [sg.id],
        },
    });
    
    import pulumi
    import pulumi_aws as aws
    
    example = aws.msk.Cluster("example",
        cluster_name="example",
        kafka_version="2.7.1",
        number_of_broker_nodes=3,
        broker_node_group_info=aws.msk.ClusterBrokerNodeGroupInfoArgs(
            instance_type="kafka.m5.4xlarge",
            client_subnets=[
                subnet_az1["id"],
                subnet_az2["id"],
                subnet_az3["id"],
            ],
            storage_info=aws.msk.ClusterBrokerNodeGroupInfoStorageInfoArgs(
                ebs_storage_info=aws.msk.ClusterBrokerNodeGroupInfoStorageInfoEbsStorageInfoArgs(
                    provisioned_throughput=aws.msk.ClusterBrokerNodeGroupInfoStorageInfoEbsStorageInfoProvisionedThroughputArgs(
                        enabled=True,
                        volume_throughput=250,
                    ),
                    volume_size=1000,
                ),
            ),
            security_groups=[sg["id"]],
        ))
    
    package main
    
    import (
    	"github.com/pulumi/pulumi-aws/sdk/v6/go/aws/msk"
    	"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
    )
    
    func main() {
    	pulumi.Run(func(ctx *pulumi.Context) error {
    		_, err := msk.NewCluster(ctx, "example", &msk.ClusterArgs{
    			ClusterName:         pulumi.String("example"),
    			KafkaVersion:        pulumi.String("2.7.1"),
    			NumberOfBrokerNodes: pulumi.Int(3),
    			BrokerNodeGroupInfo: &msk.ClusterBrokerNodeGroupInfoArgs{
    				InstanceType: pulumi.String("kafka.m5.4xlarge"),
    				ClientSubnets: pulumi.StringArray{
    					subnetAz1.Id,
    					subnetAz2.Id,
    					subnetAz3.Id,
    				},
    				StorageInfo: &msk.ClusterBrokerNodeGroupInfoStorageInfoArgs{
    					EbsStorageInfo: &msk.ClusterBrokerNodeGroupInfoStorageInfoEbsStorageInfoArgs{
    						ProvisionedThroughput: &msk.ClusterBrokerNodeGroupInfoStorageInfoEbsStorageInfoProvisionedThroughputArgs{
    							Enabled:          pulumi.Bool(true),
    							VolumeThroughput: pulumi.Int(250),
    						},
    						VolumeSize: pulumi.Int(1000),
    					},
    				},
    				SecurityGroups: pulumi.StringArray{
    					sg.Id,
    				},
    			},
    		})
    		if err != nil {
    			return err
    		}
    		return nil
    	})
    }
    
    using System.Collections.Generic;
    using System.Linq;
    using Pulumi;
    using Aws = Pulumi.Aws;
    
    return await Deployment.RunAsync(() => 
    {
        var example = new Aws.Msk.Cluster("example", new()
        {
            ClusterName = "example",
            KafkaVersion = "2.7.1",
            NumberOfBrokerNodes = 3,
            BrokerNodeGroupInfo = new Aws.Msk.Inputs.ClusterBrokerNodeGroupInfoArgs
            {
                InstanceType = "kafka.m5.4xlarge",
                ClientSubnets = new[]
                {
                    subnetAz1.Id,
                    subnetAz2.Id,
                    subnetAz3.Id,
                },
                StorageInfo = new Aws.Msk.Inputs.ClusterBrokerNodeGroupInfoStorageInfoArgs
                {
                    EbsStorageInfo = new Aws.Msk.Inputs.ClusterBrokerNodeGroupInfoStorageInfoEbsStorageInfoArgs
                    {
                        ProvisionedThroughput = new Aws.Msk.Inputs.ClusterBrokerNodeGroupInfoStorageInfoEbsStorageInfoProvisionedThroughputArgs
                        {
                            Enabled = true,
                            VolumeThroughput = 250,
                        },
                        VolumeSize = 1000,
                    },
                },
                SecurityGroups = new[]
                {
                    sg.Id,
                },
            },
        });
    
    });
    
    package generated_program;
    
    import com.pulumi.Context;
    import com.pulumi.Pulumi;
    import com.pulumi.core.Output;
    import com.pulumi.aws.msk.Cluster;
    import com.pulumi.aws.msk.ClusterArgs;
    import com.pulumi.aws.msk.inputs.ClusterBrokerNodeGroupInfoArgs;
    import com.pulumi.aws.msk.inputs.ClusterBrokerNodeGroupInfoStorageInfoArgs;
    import com.pulumi.aws.msk.inputs.ClusterBrokerNodeGroupInfoStorageInfoEbsStorageInfoArgs;
    import com.pulumi.aws.msk.inputs.ClusterBrokerNodeGroupInfoStorageInfoEbsStorageInfoProvisionedThroughputArgs;
    import java.util.List;
    import java.util.ArrayList;
    import java.util.Map;
    import java.io.File;
    import java.nio.file.Files;
    import java.nio.file.Paths;
    
    public class App {
        public static void main(String[] args) {
            Pulumi.run(App::stack);
        }
    
        public static void stack(Context ctx) {
            var example = new Cluster("example", ClusterArgs.builder()        
                .clusterName("example")
                .kafkaVersion("2.7.1")
                .numberOfBrokerNodes(3)
                .brokerNodeGroupInfo(ClusterBrokerNodeGroupInfoArgs.builder()
                    .instanceType("kafka.m5.4xlarge")
                    .clientSubnets(                
                        subnetAz1.id(),
                        subnetAz2.id(),
                        subnetAz3.id())
                    .storageInfo(ClusterBrokerNodeGroupInfoStorageInfoArgs.builder()
                        .ebsStorageInfo(ClusterBrokerNodeGroupInfoStorageInfoEbsStorageInfoArgs.builder()
                            .provisionedThroughput(ClusterBrokerNodeGroupInfoStorageInfoEbsStorageInfoProvisionedThroughputArgs.builder()
                                .enabled(true)
                                .volumeThroughput(250)
                                .build())
                            .volumeSize(1000)
                            .build())
                        .build())
                    .securityGroups(sg.id())
                    .build())
                .build());
    
        }
    }
    
    resources:
      example:
        type: aws:msk:Cluster
        properties:
          clusterName: example
          kafkaVersion: 2.7.1
          numberOfBrokerNodes: 3
          brokerNodeGroupInfo:
            instanceType: kafka.m5.4xlarge
            clientSubnets:
              - ${subnetAz1.id}
              - ${subnetAz2.id}
              - ${subnetAz3.id}
            storageInfo:
              ebsStorageInfo:
                provisionedThroughput:
                  enabled: true
                  volumeThroughput: 250
                volumeSize: 1000
            securityGroups:
              - ${sg.id}
    

    Create Cluster Resource

    new Cluster(name: string, args: ClusterArgs, opts?: CustomResourceOptions);
    @overload
    def Cluster(resource_name: str,
                opts: Optional[ResourceOptions] = None,
                broker_node_group_info: Optional[ClusterBrokerNodeGroupInfoArgs] = None,
                client_authentication: Optional[ClusterClientAuthenticationArgs] = None,
                cluster_name: Optional[str] = None,
                configuration_info: Optional[ClusterConfigurationInfoArgs] = None,
                encryption_info: Optional[ClusterEncryptionInfoArgs] = None,
                enhanced_monitoring: Optional[str] = None,
                kafka_version: Optional[str] = None,
                logging_info: Optional[ClusterLoggingInfoArgs] = None,
                number_of_broker_nodes: Optional[int] = None,
                open_monitoring: Optional[ClusterOpenMonitoringArgs] = None,
                storage_mode: Optional[str] = None,
                tags: Optional[Mapping[str, str]] = None)
    @overload
    def Cluster(resource_name: str,
                args: ClusterArgs,
                opts: Optional[ResourceOptions] = None)
    func NewCluster(ctx *Context, name string, args ClusterArgs, opts ...ResourceOption) (*Cluster, error)
    public Cluster(string name, ClusterArgs args, CustomResourceOptions? opts = null)
    public Cluster(String name, ClusterArgs args)
    public Cluster(String name, ClusterArgs args, CustomResourceOptions options)
    
    type: aws:msk:Cluster
    properties: # The arguments to resource properties.
    options: # Bag of options to control resource's behavior.
    
    
    name string
    The unique name of the resource.
    args ClusterArgs
    The arguments to resource properties.
    opts CustomResourceOptions
    Bag of options to control resource's behavior.
    resource_name str
    The unique name of the resource.
    args ClusterArgs
    The arguments to resource properties.
    opts ResourceOptions
    Bag of options to control resource's behavior.
    ctx Context
    Context object for the current deployment.
    name string
    The unique name of the resource.
    args ClusterArgs
    The arguments to resource properties.
    opts ResourceOption
    Bag of options to control resource's behavior.
    name string
    The unique name of the resource.
    args ClusterArgs
    The arguments to resource properties.
    opts CustomResourceOptions
    Bag of options to control resource's behavior.
    name String
    The unique name of the resource.
    args ClusterArgs
    The arguments to resource properties.
    options CustomResourceOptions
    Bag of options to control resource's behavior.

    Cluster Resource Properties

    To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.

    Inputs

    The Cluster resource accepts the following input properties:

    BrokerNodeGroupInfo ClusterBrokerNodeGroupInfo
    Configuration block for the broker nodes of the Kafka cluster.
    KafkaVersion string
    Specify the desired Kafka software version.
    NumberOfBrokerNodes int
    The desired total number of broker nodes in the kafka cluster. It must be a multiple of the number of specified client subnets.
    ClientAuthentication ClusterClientAuthentication
    Configuration block for specifying a client authentication. See below.
    ClusterName string
    Name of the MSK cluster.
    ConfigurationInfo ClusterConfigurationInfo
    Configuration block for specifying a MSK Configuration to attach to Kafka brokers. See below.
    EncryptionInfo ClusterEncryptionInfo
    Configuration block for specifying encryption. See below.
    EnhancedMonitoring string
    Specify the desired enhanced MSK CloudWatch monitoring level. See Monitoring Amazon MSK with Amazon CloudWatch
    LoggingInfo ClusterLoggingInfo
    Configuration block for streaming broker logs to Cloudwatch/S3/Kinesis Firehose. See below.
    OpenMonitoring ClusterOpenMonitoring
    Configuration block for JMX and Node monitoring for the MSK cluster. See below.
    StorageMode string
    Controls storage mode for supported storage tiers. Valid values are: LOCAL or TIERED.
    Tags Dictionary<string, string>
    A map of tags to assign to the resource. .If configured with a provider default_tags configuration block present, tags with matching keys will overwrite those defined at the provider-level.
    BrokerNodeGroupInfo ClusterBrokerNodeGroupInfoArgs
    Configuration block for the broker nodes of the Kafka cluster.
    KafkaVersion string
    Specify the desired Kafka software version.
    NumberOfBrokerNodes int
    The desired total number of broker nodes in the kafka cluster. It must be a multiple of the number of specified client subnets.
    ClientAuthentication ClusterClientAuthenticationArgs
    Configuration block for specifying a client authentication. See below.
    ClusterName string
    Name of the MSK cluster.
    ConfigurationInfo ClusterConfigurationInfoArgs
    Configuration block for specifying a MSK Configuration to attach to Kafka brokers. See below.
    EncryptionInfo ClusterEncryptionInfoArgs
    Configuration block for specifying encryption. See below.
    EnhancedMonitoring string
    Specify the desired enhanced MSK CloudWatch monitoring level. See Monitoring Amazon MSK with Amazon CloudWatch
    LoggingInfo ClusterLoggingInfoArgs
    Configuration block for streaming broker logs to Cloudwatch/S3/Kinesis Firehose. See below.
    OpenMonitoring ClusterOpenMonitoringArgs
    Configuration block for JMX and Node monitoring for the MSK cluster. See below.
    StorageMode string
    Controls storage mode for supported storage tiers. Valid values are: LOCAL or TIERED.
    Tags map[string]string
    A map of tags to assign to the resource. .If configured with a provider default_tags configuration block present, tags with matching keys will overwrite those defined at the provider-level.
    brokerNodeGroupInfo ClusterBrokerNodeGroupInfo
    Configuration block for the broker nodes of the Kafka cluster.
    kafkaVersion String
    Specify the desired Kafka software version.
    numberOfBrokerNodes Integer
    The desired total number of broker nodes in the kafka cluster. It must be a multiple of the number of specified client subnets.
    clientAuthentication ClusterClientAuthentication
    Configuration block for specifying a client authentication. See below.
    clusterName String
    Name of the MSK cluster.
    configurationInfo ClusterConfigurationInfo
    Configuration block for specifying a MSK Configuration to attach to Kafka brokers. See below.
    encryptionInfo ClusterEncryptionInfo
    Configuration block for specifying encryption. See below.
    enhancedMonitoring String
    Specify the desired enhanced MSK CloudWatch monitoring level. See Monitoring Amazon MSK with Amazon CloudWatch
    loggingInfo ClusterLoggingInfo
    Configuration block for streaming broker logs to Cloudwatch/S3/Kinesis Firehose. See below.
    openMonitoring ClusterOpenMonitoring
    Configuration block for JMX and Node monitoring for the MSK cluster. See below.
    storageMode String
    Controls storage mode for supported storage tiers. Valid values are: LOCAL or TIERED.
    tags Map<String,String>
    A map of tags to assign to the resource. .If configured with a provider default_tags configuration block present, tags with matching keys will overwrite those defined at the provider-level.
    brokerNodeGroupInfo ClusterBrokerNodeGroupInfo
    Configuration block for the broker nodes of the Kafka cluster.
    kafkaVersion string
    Specify the desired Kafka software version.
    numberOfBrokerNodes number
    The desired total number of broker nodes in the kafka cluster. It must be a multiple of the number of specified client subnets.
    clientAuthentication ClusterClientAuthentication
    Configuration block for specifying a client authentication. See below.
    clusterName string
    Name of the MSK cluster.
    configurationInfo ClusterConfigurationInfo
    Configuration block for specifying a MSK Configuration to attach to Kafka brokers. See below.
    encryptionInfo ClusterEncryptionInfo
    Configuration block for specifying encryption. See below.
    enhancedMonitoring string
    Specify the desired enhanced MSK CloudWatch monitoring level. See Monitoring Amazon MSK with Amazon CloudWatch
    loggingInfo ClusterLoggingInfo
    Configuration block for streaming broker logs to Cloudwatch/S3/Kinesis Firehose. See below.
    openMonitoring ClusterOpenMonitoring
    Configuration block for JMX and Node monitoring for the MSK cluster. See below.
    storageMode string
    Controls storage mode for supported storage tiers. Valid values are: LOCAL or TIERED.
    tags {[key: string]: string}
    A map of tags to assign to the resource. .If configured with a provider default_tags configuration block present, tags with matching keys will overwrite those defined at the provider-level.
    broker_node_group_info ClusterBrokerNodeGroupInfoArgs
    Configuration block for the broker nodes of the Kafka cluster.
    kafka_version str
    Specify the desired Kafka software version.
    number_of_broker_nodes int
    The desired total number of broker nodes in the kafka cluster. It must be a multiple of the number of specified client subnets.
    client_authentication ClusterClientAuthenticationArgs
    Configuration block for specifying a client authentication. See below.
    cluster_name str
    Name of the MSK cluster.
    configuration_info ClusterConfigurationInfoArgs
    Configuration block for specifying a MSK Configuration to attach to Kafka brokers. See below.
    encryption_info ClusterEncryptionInfoArgs
    Configuration block for specifying encryption. See below.
    enhanced_monitoring str
    Specify the desired enhanced MSK CloudWatch monitoring level. See Monitoring Amazon MSK with Amazon CloudWatch
    logging_info ClusterLoggingInfoArgs
    Configuration block for streaming broker logs to Cloudwatch/S3/Kinesis Firehose. See below.
    open_monitoring ClusterOpenMonitoringArgs
    Configuration block for JMX and Node monitoring for the MSK cluster. See below.
    storage_mode str
    Controls storage mode for supported storage tiers. Valid values are: LOCAL or TIERED.
    tags Mapping[str, str]
    A map of tags to assign to the resource. .If configured with a provider default_tags configuration block present, tags with matching keys will overwrite those defined at the provider-level.
    brokerNodeGroupInfo Property Map
    Configuration block for the broker nodes of the Kafka cluster.
    kafkaVersion String
    Specify the desired Kafka software version.
    numberOfBrokerNodes Number
    The desired total number of broker nodes in the kafka cluster. It must be a multiple of the number of specified client subnets.
    clientAuthentication Property Map
    Configuration block for specifying a client authentication. See below.
    clusterName String
    Name of the MSK cluster.
    configurationInfo Property Map
    Configuration block for specifying a MSK Configuration to attach to Kafka brokers. See below.
    encryptionInfo Property Map
    Configuration block for specifying encryption. See below.
    enhancedMonitoring String
    Specify the desired enhanced MSK CloudWatch monitoring level. See Monitoring Amazon MSK with Amazon CloudWatch
    loggingInfo Property Map
    Configuration block for streaming broker logs to Cloudwatch/S3/Kinesis Firehose. See below.
    openMonitoring Property Map
    Configuration block for JMX and Node monitoring for the MSK cluster. See below.
    storageMode String
    Controls storage mode for supported storage tiers. Valid values are: LOCAL or TIERED.
    tags Map<String>
    A map of tags to assign to the resource. .If configured with a provider default_tags configuration block present, tags with matching keys will overwrite those defined at the provider-level.

    Outputs

    All input properties are implicitly available as output properties. Additionally, the Cluster resource produces the following output properties:

    Arn string
    Amazon Resource Name (ARN) of the MSK Configuration to use in the cluster.
    BootstrapBrokers string
    Comma separated list of one or more hostname:port pairs of kafka brokers suitable to bootstrap connectivity to the kafka cluster. Contains a value if encryption_info.0.encryption_in_transit.0.client_broker is set to PLAINTEXT or TLS_PLAINTEXT. The resource sorts values alphabetically. AWS may not always return all endpoints so this value is not guaranteed to be stable across applies.
    BootstrapBrokersPublicSaslIam string
    One or more DNS names (or IP addresses) and SASL IAM port pairs. For example, b-1-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9198,b-2-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9198,b-3-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9198. This attribute will have a value if encryption_info.0.encryption_in_transit.0.client_broker is set to TLS_PLAINTEXT or TLS and client_authentication.0.sasl.0.iam is set to true and broker_node_group_info.0.connectivity_info.0.public_access.0.type is set to SERVICE_PROVIDED_EIPS and the cluster fulfill all other requirements for public access. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies.
    BootstrapBrokersPublicSaslScram string
    One or more DNS names (or IP addresses) and SASL SCRAM port pairs. For example, b-1-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9196,b-2-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9196,b-3-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9196. This attribute will have a value if encryption_info.0.encryption_in_transit.0.client_broker is set to TLS_PLAINTEXT or TLS and client_authentication.0.sasl.0.scram is set to true and broker_node_group_info.0.connectivity_info.0.public_access.0.type is set to SERVICE_PROVIDED_EIPS and the cluster fulfill all other requirements for public access. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies.
    BootstrapBrokersPublicTls string
    One or more DNS names (or IP addresses) and TLS port pairs. For example, b-1-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9194,b-2-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9194,b-3-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9194. This attribute will have a value if encryption_info.0.encryption_in_transit.0.client_broker is set to TLS_PLAINTEXT or TLS and broker_node_group_info.0.connectivity_info.0.public_access.0.type is set to SERVICE_PROVIDED_EIPS and the cluster fulfill all other requirements for public access. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies.
    BootstrapBrokersSaslIam string
    One or more DNS names (or IP addresses) and SASL IAM port pairs. For example, b-1.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9098,b-2.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9098,b-3.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9098. This attribute will have a value if encryption_info.0.encryption_in_transit.0.client_broker is set to TLS_PLAINTEXT or TLS and client_authentication.0.sasl.0.iam is set to true. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies.
    BootstrapBrokersSaslScram string
    One or more DNS names (or IP addresses) and SASL SCRAM port pairs. For example, b-1.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9096,b-2.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9096,b-3.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9096. This attribute will have a value if encryption_info.0.encryption_in_transit.0.client_broker is set to TLS_PLAINTEXT or TLS and client_authentication.0.sasl.0.scram is set to true. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies.
    BootstrapBrokersTls string
    One or more DNS names (or IP addresses) and TLS port pairs. For example, b-1.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9094,b-2.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9094,b-3.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9094. This attribute will have a value if encryption_info.0.encryption_in_transit.0.client_broker is set to TLS_PLAINTEXT or TLS. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies.
    BootstrapBrokersVpcConnectivitySaslIam string
    A string containing one or more DNS names (or IP addresses) and SASL IAM port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.
    BootstrapBrokersVpcConnectivitySaslScram string
    A string containing one or more DNS names (or IP addresses) and SASL SCRAM port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.
    BootstrapBrokersVpcConnectivityTls string
    A string containing one or more DNS names (or IP addresses) and TLS port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.
    ClusterUuid string
    UUID of the MSK cluster, for use in IAM policies.
    CurrentVersion string
    Current version of the MSK Cluster used for updates, e.g., K13V1IB3VIYZZH

    • encryption_info.0.encryption_at_rest_kms_key_arn - The ARN of the KMS key used for encryption at rest of the broker data volumes.
    Id string
    The provider-assigned unique ID for this managed resource.
    TagsAll Dictionary<string, string>
    A map of tags assigned to the resource, including those inherited from the provider default_tags configuration block.

    Deprecated:Please use tags instead.

    ZookeeperConnectString string
    A comma separated list of one or more hostname:port pairs to use to connect to the Apache Zookeeper cluster. The returned values are sorted alphabetically. The AWS API may not return all endpoints, so this value is not guaranteed to be stable across applies.
    ZookeeperConnectStringTls string
    A comma separated list of one or more hostname:port pairs to use to connect to the Apache Zookeeper cluster via TLS. The returned values are sorted alphabetically. The AWS API may not return all endpoints, so this value is not guaranteed to be stable across applies.
    Arn string
    Amazon Resource Name (ARN) of the MSK Configuration to use in the cluster.
    BootstrapBrokers string
    Comma separated list of one or more hostname:port pairs of kafka brokers suitable to bootstrap connectivity to the kafka cluster. Contains a value if encryption_info.0.encryption_in_transit.0.client_broker is set to PLAINTEXT or TLS_PLAINTEXT. The resource sorts values alphabetically. AWS may not always return all endpoints so this value is not guaranteed to be stable across applies.
    BootstrapBrokersPublicSaslIam string
    One or more DNS names (or IP addresses) and SASL IAM port pairs. For example, b-1-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9198,b-2-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9198,b-3-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9198. This attribute will have a value if encryption_info.0.encryption_in_transit.0.client_broker is set to TLS_PLAINTEXT or TLS and client_authentication.0.sasl.0.iam is set to true and broker_node_group_info.0.connectivity_info.0.public_access.0.type is set to SERVICE_PROVIDED_EIPS and the cluster fulfill all other requirements for public access. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies.
    BootstrapBrokersPublicSaslScram string
    One or more DNS names (or IP addresses) and SASL SCRAM port pairs. For example, b-1-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9196,b-2-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9196,b-3-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9196. This attribute will have a value if encryption_info.0.encryption_in_transit.0.client_broker is set to TLS_PLAINTEXT or TLS and client_authentication.0.sasl.0.scram is set to true and broker_node_group_info.0.connectivity_info.0.public_access.0.type is set to SERVICE_PROVIDED_EIPS and the cluster fulfill all other requirements for public access. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies.
    BootstrapBrokersPublicTls string
    One or more DNS names (or IP addresses) and TLS port pairs. For example, b-1-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9194,b-2-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9194,b-3-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9194. This attribute will have a value if encryption_info.0.encryption_in_transit.0.client_broker is set to TLS_PLAINTEXT or TLS and broker_node_group_info.0.connectivity_info.0.public_access.0.type is set to SERVICE_PROVIDED_EIPS and the cluster fulfill all other requirements for public access. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies.
    BootstrapBrokersSaslIam string
    One or more DNS names (or IP addresses) and SASL IAM port pairs. For example, b-1.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9098,b-2.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9098,b-3.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9098. This attribute will have a value if encryption_info.0.encryption_in_transit.0.client_broker is set to TLS_PLAINTEXT or TLS and client_authentication.0.sasl.0.iam is set to true. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies.
    BootstrapBrokersSaslScram string
    One or more DNS names (or IP addresses) and SASL SCRAM port pairs. For example, b-1.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9096,b-2.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9096,b-3.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9096. This attribute will have a value if encryption_info.0.encryption_in_transit.0.client_broker is set to TLS_PLAINTEXT or TLS and client_authentication.0.sasl.0.scram is set to true. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies.
    BootstrapBrokersTls string
    One or more DNS names (or IP addresses) and TLS port pairs. For example, b-1.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9094,b-2.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9094,b-3.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9094. This attribute will have a value if encryption_info.0.encryption_in_transit.0.client_broker is set to TLS_PLAINTEXT or TLS. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies.
    BootstrapBrokersVpcConnectivitySaslIam string
    A string containing one or more DNS names (or IP addresses) and SASL IAM port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.
    BootstrapBrokersVpcConnectivitySaslScram string
    A string containing one or more DNS names (or IP addresses) and SASL SCRAM port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.
    BootstrapBrokersVpcConnectivityTls string
    A string containing one or more DNS names (or IP addresses) and TLS port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.
    ClusterUuid string
    UUID of the MSK cluster, for use in IAM policies.
    CurrentVersion string
    Current version of the MSK Cluster used for updates, e.g., K13V1IB3VIYZZH

    • encryption_info.0.encryption_at_rest_kms_key_arn - The ARN of the KMS key used for encryption at rest of the broker data volumes.
    Id string
    The provider-assigned unique ID for this managed resource.
    TagsAll map[string]string
    A map of tags assigned to the resource, including those inherited from the provider default_tags configuration block.

    Deprecated:Please use tags instead.

    ZookeeperConnectString string
    A comma separated list of one or more hostname:port pairs to use to connect to the Apache Zookeeper cluster. The returned values are sorted alphabetically. The AWS API may not return all endpoints, so this value is not guaranteed to be stable across applies.
    ZookeeperConnectStringTls string
    A comma separated list of one or more hostname:port pairs to use to connect to the Apache Zookeeper cluster via TLS. The returned values are sorted alphabetically. The AWS API may not return all endpoints, so this value is not guaranteed to be stable across applies.
    arn String
    Amazon Resource Name (ARN) of the MSK Configuration to use in the cluster.
    bootstrapBrokers String
    Comma separated list of one or more hostname:port pairs of kafka brokers suitable to bootstrap connectivity to the kafka cluster. Contains a value if encryption_info.0.encryption_in_transit.0.client_broker is set to PLAINTEXT or TLS_PLAINTEXT. The resource sorts values alphabetically. AWS may not always return all endpoints so this value is not guaranteed to be stable across applies.
    bootstrapBrokersPublicSaslIam String
    One or more DNS names (or IP addresses) and SASL IAM port pairs. For example, b-1-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9198,b-2-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9198,b-3-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9198. This attribute will have a value if encryption_info.0.encryption_in_transit.0.client_broker is set to TLS_PLAINTEXT or TLS and client_authentication.0.sasl.0.iam is set to true and broker_node_group_info.0.connectivity_info.0.public_access.0.type is set to SERVICE_PROVIDED_EIPS and the cluster fulfill all other requirements for public access. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies.
    bootstrapBrokersPublicSaslScram String
    One or more DNS names (or IP addresses) and SASL SCRAM port pairs. For example, b-1-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9196,b-2-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9196,b-3-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9196. This attribute will have a value if encryption_info.0.encryption_in_transit.0.client_broker is set to TLS_PLAINTEXT or TLS and client_authentication.0.sasl.0.scram is set to true and broker_node_group_info.0.connectivity_info.0.public_access.0.type is set to SERVICE_PROVIDED_EIPS and the cluster fulfill all other requirements for public access. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies.
    bootstrapBrokersPublicTls String
    One or more DNS names (or IP addresses) and TLS port pairs. For example, b-1-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9194,b-2-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9194,b-3-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9194. This attribute will have a value if encryption_info.0.encryption_in_transit.0.client_broker is set to TLS_PLAINTEXT or TLS and broker_node_group_info.0.connectivity_info.0.public_access.0.type is set to SERVICE_PROVIDED_EIPS and the cluster fulfill all other requirements for public access. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies.
    bootstrapBrokersSaslIam String
    One or more DNS names (or IP addresses) and SASL IAM port pairs. For example, b-1.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9098,b-2.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9098,b-3.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9098. This attribute will have a value if encryption_info.0.encryption_in_transit.0.client_broker is set to TLS_PLAINTEXT or TLS and client_authentication.0.sasl.0.iam is set to true. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies.
    bootstrapBrokersSaslScram String
    One or more DNS names (or IP addresses) and SASL SCRAM port pairs. For example, b-1.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9096,b-2.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9096,b-3.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9096. This attribute will have a value if encryption_info.0.encryption_in_transit.0.client_broker is set to TLS_PLAINTEXT or TLS and client_authentication.0.sasl.0.scram is set to true. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies.
    bootstrapBrokersTls String
    One or more DNS names (or IP addresses) and TLS port pairs. For example, b-1.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9094,b-2.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9094,b-3.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9094. This attribute will have a value if encryption_info.0.encryption_in_transit.0.client_broker is set to TLS_PLAINTEXT or TLS. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies.
    bootstrapBrokersVpcConnectivitySaslIam String
    A string containing one or more DNS names (or IP addresses) and SASL IAM port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.
    bootstrapBrokersVpcConnectivitySaslScram String
    A string containing one or more DNS names (or IP addresses) and SASL SCRAM port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.
    bootstrapBrokersVpcConnectivityTls String
    A string containing one or more DNS names (or IP addresses) and TLS port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.
    clusterUuid String
    UUID of the MSK cluster, for use in IAM policies.
    currentVersion String
    Current version of the MSK Cluster used for updates, e.g., K13V1IB3VIYZZH

    • encryption_info.0.encryption_at_rest_kms_key_arn - The ARN of the KMS key used for encryption at rest of the broker data volumes.
    id String
    The provider-assigned unique ID for this managed resource.
    tagsAll Map<String,String>
    A map of tags assigned to the resource, including those inherited from the provider default_tags configuration block.

    Deprecated:Please use tags instead.

    zookeeperConnectString String
    A comma separated list of one or more hostname:port pairs to use to connect to the Apache Zookeeper cluster. The returned values are sorted alphabetically. The AWS API may not return all endpoints, so this value is not guaranteed to be stable across applies.
    zookeeperConnectStringTls String
    A comma separated list of one or more hostname:port pairs to use to connect to the Apache Zookeeper cluster via TLS. The returned values are sorted alphabetically. The AWS API may not return all endpoints, so this value is not guaranteed to be stable across applies.
    arn string
    Amazon Resource Name (ARN) of the MSK Configuration to use in the cluster.
    bootstrapBrokers string
    Comma separated list of one or more hostname:port pairs of kafka brokers suitable to bootstrap connectivity to the kafka cluster. Contains a value if encryption_info.0.encryption_in_transit.0.client_broker is set to PLAINTEXT or TLS_PLAINTEXT. The resource sorts values alphabetically. AWS may not always return all endpoints so this value is not guaranteed to be stable across applies.
    bootstrapBrokersPublicSaslIam string
    One or more DNS names (or IP addresses) and SASL IAM port pairs. For example, b-1-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9198,b-2-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9198,b-3-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9198. This attribute will have a value if encryption_info.0.encryption_in_transit.0.client_broker is set to TLS_PLAINTEXT or TLS and client_authentication.0.sasl.0.iam is set to true and broker_node_group_info.0.connectivity_info.0.public_access.0.type is set to SERVICE_PROVIDED_EIPS and the cluster fulfill all other requirements for public access. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies.
    bootstrapBrokersPublicSaslScram string
    One or more DNS names (or IP addresses) and SASL SCRAM port pairs. For example, b-1-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9196,b-2-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9196,b-3-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9196. This attribute will have a value if encryption_info.0.encryption_in_transit.0.client_broker is set to TLS_PLAINTEXT or TLS and client_authentication.0.sasl.0.scram is set to true and broker_node_group_info.0.connectivity_info.0.public_access.0.type is set to SERVICE_PROVIDED_EIPS and the cluster fulfill all other requirements for public access. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies.
    bootstrapBrokersPublicTls string
    One or more DNS names (or IP addresses) and TLS port pairs. For example, b-1-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9194,b-2-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9194,b-3-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9194. This attribute will have a value if encryption_info.0.encryption_in_transit.0.client_broker is set to TLS_PLAINTEXT or TLS and broker_node_group_info.0.connectivity_info.0.public_access.0.type is set to SERVICE_PROVIDED_EIPS and the cluster fulfill all other requirements for public access. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies.
    bootstrapBrokersSaslIam string
    One or more DNS names (or IP addresses) and SASL IAM port pairs. For example, b-1.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9098,b-2.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9098,b-3.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9098. This attribute will have a value if encryption_info.0.encryption_in_transit.0.client_broker is set to TLS_PLAINTEXT or TLS and client_authentication.0.sasl.0.iam is set to true. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies.
    bootstrapBrokersSaslScram string
    One or more DNS names (or IP addresses) and SASL SCRAM port pairs. For example, b-1.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9096,b-2.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9096,b-3.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9096. This attribute will have a value if encryption_info.0.encryption_in_transit.0.client_broker is set to TLS_PLAINTEXT or TLS and client_authentication.0.sasl.0.scram is set to true. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies.
    bootstrapBrokersTls string
    One or more DNS names (or IP addresses) and TLS port pairs. For example, b-1.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9094,b-2.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9094,b-3.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9094. This attribute will have a value if encryption_info.0.encryption_in_transit.0.client_broker is set to TLS_PLAINTEXT or TLS. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies.
    bootstrapBrokersVpcConnectivitySaslIam string
    A string containing one or more DNS names (or IP addresses) and SASL IAM port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.
    bootstrapBrokersVpcConnectivitySaslScram string
    A string containing one or more DNS names (or IP addresses) and SASL SCRAM port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.
    bootstrapBrokersVpcConnectivityTls string
    A string containing one or more DNS names (or IP addresses) and TLS port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.
    clusterUuid string
    UUID of the MSK cluster, for use in IAM policies.
    currentVersion string
    Current version of the MSK Cluster used for updates, e.g., K13V1IB3VIYZZH

    • encryption_info.0.encryption_at_rest_kms_key_arn - The ARN of the KMS key used for encryption at rest of the broker data volumes.
    id string
    The provider-assigned unique ID for this managed resource.
    tagsAll {[key: string]: string}
    A map of tags assigned to the resource, including those inherited from the provider default_tags configuration block.

    Deprecated:Please use tags instead.

    zookeeperConnectString string
    A comma separated list of one or more hostname:port pairs to use to connect to the Apache Zookeeper cluster. The returned values are sorted alphabetically. The AWS API may not return all endpoints, so this value is not guaranteed to be stable across applies.
    zookeeperConnectStringTls string
    A comma separated list of one or more hostname:port pairs to use to connect to the Apache Zookeeper cluster via TLS. The returned values are sorted alphabetically. The AWS API may not return all endpoints, so this value is not guaranteed to be stable across applies.
    arn str
    Amazon Resource Name (ARN) of the MSK Configuration to use in the cluster.
    bootstrap_brokers str
    Comma separated list of one or more hostname:port pairs of kafka brokers suitable to bootstrap connectivity to the kafka cluster. Contains a value if encryption_info.0.encryption_in_transit.0.client_broker is set to PLAINTEXT or TLS_PLAINTEXT. The resource sorts values alphabetically. AWS may not always return all endpoints so this value is not guaranteed to be stable across applies.
    bootstrap_brokers_public_sasl_iam str
    One or more DNS names (or IP addresses) and SASL IAM port pairs. For example, b-1-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9198,b-2-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9198,b-3-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9198. This attribute will have a value if encryption_info.0.encryption_in_transit.0.client_broker is set to TLS_PLAINTEXT or TLS and client_authentication.0.sasl.0.iam is set to true and broker_node_group_info.0.connectivity_info.0.public_access.0.type is set to SERVICE_PROVIDED_EIPS and the cluster fulfill all other requirements for public access. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies.
    bootstrap_brokers_public_sasl_scram str
    One or more DNS names (or IP addresses) and SASL SCRAM port pairs. For example, b-1-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9196,b-2-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9196,b-3-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9196. This attribute will have a value if encryption_info.0.encryption_in_transit.0.client_broker is set to TLS_PLAINTEXT or TLS and client_authentication.0.sasl.0.scram is set to true and broker_node_group_info.0.connectivity_info.0.public_access.0.type is set to SERVICE_PROVIDED_EIPS and the cluster fulfill all other requirements for public access. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies.
    bootstrap_brokers_public_tls str
    One or more DNS names (or IP addresses) and TLS port pairs. For example, b-1-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9194,b-2-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9194,b-3-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9194. This attribute will have a value if encryption_info.0.encryption_in_transit.0.client_broker is set to TLS_PLAINTEXT or TLS and broker_node_group_info.0.connectivity_info.0.public_access.0.type is set to SERVICE_PROVIDED_EIPS and the cluster fulfill all other requirements for public access. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies.
    bootstrap_brokers_sasl_iam str
    One or more DNS names (or IP addresses) and SASL IAM port pairs. For example, b-1.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9098,b-2.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9098,b-3.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9098. This attribute will have a value if encryption_info.0.encryption_in_transit.0.client_broker is set to TLS_PLAINTEXT or TLS and client_authentication.0.sasl.0.iam is set to true. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies.
    bootstrap_brokers_sasl_scram str
    One or more DNS names (or IP addresses) and SASL SCRAM port pairs. For example, b-1.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9096,b-2.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9096,b-3.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9096. This attribute will have a value if encryption_info.0.encryption_in_transit.0.client_broker is set to TLS_PLAINTEXT or TLS and client_authentication.0.sasl.0.scram is set to true. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies.
    bootstrap_brokers_tls str
    One or more DNS names (or IP addresses) and TLS port pairs. For example, b-1.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9094,b-2.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9094,b-3.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9094. This attribute will have a value if encryption_info.0.encryption_in_transit.0.client_broker is set to TLS_PLAINTEXT or TLS. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies.
    bootstrap_brokers_vpc_connectivity_sasl_iam str
    A string containing one or more DNS names (or IP addresses) and SASL IAM port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.
    bootstrap_brokers_vpc_connectivity_sasl_scram str
    A string containing one or more DNS names (or IP addresses) and SASL SCRAM port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.
    bootstrap_brokers_vpc_connectivity_tls str
    A string containing one or more DNS names (or IP addresses) and TLS port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.
    cluster_uuid str
    UUID of the MSK cluster, for use in IAM policies.
    current_version str
    Current version of the MSK Cluster used for updates, e.g., K13V1IB3VIYZZH

    • encryption_info.0.encryption_at_rest_kms_key_arn - The ARN of the KMS key used for encryption at rest of the broker data volumes.
    id str
    The provider-assigned unique ID for this managed resource.
    tags_all Mapping[str, str]
    A map of tags assigned to the resource, including those inherited from the provider default_tags configuration block.

    Deprecated:Please use tags instead.

    zookeeper_connect_string str
    A comma separated list of one or more hostname:port pairs to use to connect to the Apache Zookeeper cluster. The returned values are sorted alphabetically. The AWS API may not return all endpoints, so this value is not guaranteed to be stable across applies.
    zookeeper_connect_string_tls str
    A comma separated list of one or more hostname:port pairs to use to connect to the Apache Zookeeper cluster via TLS. The returned values are sorted alphabetically. The AWS API may not return all endpoints, so this value is not guaranteed to be stable across applies.
    arn String
    Amazon Resource Name (ARN) of the MSK Configuration to use in the cluster.
    bootstrapBrokers String
    Comma separated list of one or more hostname:port pairs of kafka brokers suitable to bootstrap connectivity to the kafka cluster. Contains a value if encryption_info.0.encryption_in_transit.0.client_broker is set to PLAINTEXT or TLS_PLAINTEXT. The resource sorts values alphabetically. AWS may not always return all endpoints so this value is not guaranteed to be stable across applies.
    bootstrapBrokersPublicSaslIam String
    One or more DNS names (or IP addresses) and SASL IAM port pairs. For example, b-1-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9198,b-2-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9198,b-3-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9198. This attribute will have a value if encryption_info.0.encryption_in_transit.0.client_broker is set to TLS_PLAINTEXT or TLS and client_authentication.0.sasl.0.iam is set to true and broker_node_group_info.0.connectivity_info.0.public_access.0.type is set to SERVICE_PROVIDED_EIPS and the cluster fulfill all other requirements for public access. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies.
    bootstrapBrokersPublicSaslScram String
    One or more DNS names (or IP addresses) and SASL SCRAM port pairs. For example, b-1-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9196,b-2-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9196,b-3-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9196. This attribute will have a value if encryption_info.0.encryption_in_transit.0.client_broker is set to TLS_PLAINTEXT or TLS and client_authentication.0.sasl.0.scram is set to true and broker_node_group_info.0.connectivity_info.0.public_access.0.type is set to SERVICE_PROVIDED_EIPS and the cluster fulfill all other requirements for public access. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies.
    bootstrapBrokersPublicTls String
    One or more DNS names (or IP addresses) and TLS port pairs. For example, b-1-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9194,b-2-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9194,b-3-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9194. This attribute will have a value if encryption_info.0.encryption_in_transit.0.client_broker is set to TLS_PLAINTEXT or TLS and broker_node_group_info.0.connectivity_info.0.public_access.0.type is set to SERVICE_PROVIDED_EIPS and the cluster fulfill all other requirements for public access. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies.
    bootstrapBrokersSaslIam String
    One or more DNS names (or IP addresses) and SASL IAM port pairs. For example, b-1.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9098,b-2.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9098,b-3.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9098. This attribute will have a value if encryption_info.0.encryption_in_transit.0.client_broker is set to TLS_PLAINTEXT or TLS and client_authentication.0.sasl.0.iam is set to true. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies.
    bootstrapBrokersSaslScram String
    One or more DNS names (or IP addresses) and SASL SCRAM port pairs. For example, b-1.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9096,b-2.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9096,b-3.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9096. This attribute will have a value if encryption_info.0.encryption_in_transit.0.client_broker is set to TLS_PLAINTEXT or TLS and client_authentication.0.sasl.0.scram is set to true. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies.
    bootstrapBrokersTls String
    One or more DNS names (or IP addresses) and TLS port pairs. For example, b-1.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9094,b-2.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9094,b-3.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9094. This attribute will have a value if encryption_info.0.encryption_in_transit.0.client_broker is set to TLS_PLAINTEXT or TLS. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies.
    bootstrapBrokersVpcConnectivitySaslIam String
    A string containing one or more DNS names (or IP addresses) and SASL IAM port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.
    bootstrapBrokersVpcConnectivitySaslScram String
    A string containing one or more DNS names (or IP addresses) and SASL SCRAM port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.
    bootstrapBrokersVpcConnectivityTls String
    A string containing one or more DNS names (or IP addresses) and TLS port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.
    clusterUuid String
    UUID of the MSK cluster, for use in IAM policies.
    currentVersion String
    Current version of the MSK Cluster used for updates, e.g., K13V1IB3VIYZZH

    • encryption_info.0.encryption_at_rest_kms_key_arn - The ARN of the KMS key used for encryption at rest of the broker data volumes.
    id String
    The provider-assigned unique ID for this managed resource.
    tagsAll Map<String>
    A map of tags assigned to the resource, including those inherited from the provider default_tags configuration block.

    Deprecated:Please use tags instead.

    zookeeperConnectString String
    A comma separated list of one or more hostname:port pairs to use to connect to the Apache Zookeeper cluster. The returned values are sorted alphabetically. The AWS API may not return all endpoints, so this value is not guaranteed to be stable across applies.
    zookeeperConnectStringTls String
    A comma separated list of one or more hostname:port pairs to use to connect to the Apache Zookeeper cluster via TLS. The returned values are sorted alphabetically. The AWS API may not return all endpoints, so this value is not guaranteed to be stable across applies.

    Look up Existing Cluster Resource

    Get an existing Cluster resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.

    public static get(name: string, id: Input<ID>, state?: ClusterState, opts?: CustomResourceOptions): Cluster
    @staticmethod
    def get(resource_name: str,
            id: str,
            opts: Optional[ResourceOptions] = None,
            arn: Optional[str] = None,
            bootstrap_brokers: Optional[str] = None,
            bootstrap_brokers_public_sasl_iam: Optional[str] = None,
            bootstrap_brokers_public_sasl_scram: Optional[str] = None,
            bootstrap_brokers_public_tls: Optional[str] = None,
            bootstrap_brokers_sasl_iam: Optional[str] = None,
            bootstrap_brokers_sasl_scram: Optional[str] = None,
            bootstrap_brokers_tls: Optional[str] = None,
            bootstrap_brokers_vpc_connectivity_sasl_iam: Optional[str] = None,
            bootstrap_brokers_vpc_connectivity_sasl_scram: Optional[str] = None,
            bootstrap_brokers_vpc_connectivity_tls: Optional[str] = None,
            broker_node_group_info: Optional[ClusterBrokerNodeGroupInfoArgs] = None,
            client_authentication: Optional[ClusterClientAuthenticationArgs] = None,
            cluster_name: Optional[str] = None,
            cluster_uuid: Optional[str] = None,
            configuration_info: Optional[ClusterConfigurationInfoArgs] = None,
            current_version: Optional[str] = None,
            encryption_info: Optional[ClusterEncryptionInfoArgs] = None,
            enhanced_monitoring: Optional[str] = None,
            kafka_version: Optional[str] = None,
            logging_info: Optional[ClusterLoggingInfoArgs] = None,
            number_of_broker_nodes: Optional[int] = None,
            open_monitoring: Optional[ClusterOpenMonitoringArgs] = None,
            storage_mode: Optional[str] = None,
            tags: Optional[Mapping[str, str]] = None,
            tags_all: Optional[Mapping[str, str]] = None,
            zookeeper_connect_string: Optional[str] = None,
            zookeeper_connect_string_tls: Optional[str] = None) -> Cluster
    func GetCluster(ctx *Context, name string, id IDInput, state *ClusterState, opts ...ResourceOption) (*Cluster, error)
    public static Cluster Get(string name, Input<string> id, ClusterState? state, CustomResourceOptions? opts = null)
    public static Cluster get(String name, Output<String> id, ClusterState state, CustomResourceOptions options)
    Resource lookup is not supported in YAML
    name
    The unique name of the resulting resource.
    id
    The unique provider ID of the resource to lookup.
    state
    Any extra arguments used during the lookup.
    opts
    A bag of options that control this resource's behavior.
    resource_name
    The unique name of the resulting resource.
    id
    The unique provider ID of the resource to lookup.
    name
    The unique name of the resulting resource.
    id
    The unique provider ID of the resource to lookup.
    state
    Any extra arguments used during the lookup.
    opts
    A bag of options that control this resource's behavior.
    name
    The unique name of the resulting resource.
    id
    The unique provider ID of the resource to lookup.
    state
    Any extra arguments used during the lookup.
    opts
    A bag of options that control this resource's behavior.
    name
    The unique name of the resulting resource.
    id
    The unique provider ID of the resource to lookup.
    state
    Any extra arguments used during the lookup.
    opts
    A bag of options that control this resource's behavior.
    The following state arguments are supported:
    Arn string
    Amazon Resource Name (ARN) of the MSK Configuration to use in the cluster.
    BootstrapBrokers string
    Comma separated list of one or more hostname:port pairs of kafka brokers suitable to bootstrap connectivity to the kafka cluster. Contains a value if encryption_info.0.encryption_in_transit.0.client_broker is set to PLAINTEXT or TLS_PLAINTEXT. The resource sorts values alphabetically. AWS may not always return all endpoints so this value is not guaranteed to be stable across applies.
    BootstrapBrokersPublicSaslIam string
    One or more DNS names (or IP addresses) and SASL IAM port pairs. For example, b-1-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9198,b-2-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9198,b-3-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9198. This attribute will have a value if encryption_info.0.encryption_in_transit.0.client_broker is set to TLS_PLAINTEXT or TLS and client_authentication.0.sasl.0.iam is set to true and broker_node_group_info.0.connectivity_info.0.public_access.0.type is set to SERVICE_PROVIDED_EIPS and the cluster fulfill all other requirements for public access. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies.
    BootstrapBrokersPublicSaslScram string
    One or more DNS names (or IP addresses) and SASL SCRAM port pairs. For example, b-1-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9196,b-2-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9196,b-3-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9196. This attribute will have a value if encryption_info.0.encryption_in_transit.0.client_broker is set to TLS_PLAINTEXT or TLS and client_authentication.0.sasl.0.scram is set to true and broker_node_group_info.0.connectivity_info.0.public_access.0.type is set to SERVICE_PROVIDED_EIPS and the cluster fulfill all other requirements for public access. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies.
    BootstrapBrokersPublicTls string
    One or more DNS names (or IP addresses) and TLS port pairs. For example, b-1-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9194,b-2-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9194,b-3-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9194. This attribute will have a value if encryption_info.0.encryption_in_transit.0.client_broker is set to TLS_PLAINTEXT or TLS and broker_node_group_info.0.connectivity_info.0.public_access.0.type is set to SERVICE_PROVIDED_EIPS and the cluster fulfill all other requirements for public access. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies.
    BootstrapBrokersSaslIam string
    One or more DNS names (or IP addresses) and SASL IAM port pairs. For example, b-1.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9098,b-2.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9098,b-3.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9098. This attribute will have a value if encryption_info.0.encryption_in_transit.0.client_broker is set to TLS_PLAINTEXT or TLS and client_authentication.0.sasl.0.iam is set to true. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies.
    BootstrapBrokersSaslScram string
    One or more DNS names (or IP addresses) and SASL SCRAM port pairs. For example, b-1.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9096,b-2.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9096,b-3.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9096. This attribute will have a value if encryption_info.0.encryption_in_transit.0.client_broker is set to TLS_PLAINTEXT or TLS and client_authentication.0.sasl.0.scram is set to true. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies.
    BootstrapBrokersTls string
    One or more DNS names (or IP addresses) and TLS port pairs. For example, b-1.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9094,b-2.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9094,b-3.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9094. This attribute will have a value if encryption_info.0.encryption_in_transit.0.client_broker is set to TLS_PLAINTEXT or TLS. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies.
    BootstrapBrokersVpcConnectivitySaslIam string
    A string containing one or more DNS names (or IP addresses) and SASL IAM port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.
    BootstrapBrokersVpcConnectivitySaslScram string
    A string containing one or more DNS names (or IP addresses) and SASL SCRAM port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.
    BootstrapBrokersVpcConnectivityTls string
    A string containing one or more DNS names (or IP addresses) and TLS port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.
    BrokerNodeGroupInfo ClusterBrokerNodeGroupInfo
    Configuration block for the broker nodes of the Kafka cluster.
    ClientAuthentication ClusterClientAuthentication
    Configuration block for specifying a client authentication. See below.
    ClusterName string
    Name of the MSK cluster.
    ClusterUuid string
    UUID of the MSK cluster, for use in IAM policies.
    ConfigurationInfo ClusterConfigurationInfo
    Configuration block for specifying a MSK Configuration to attach to Kafka brokers. See below.
    CurrentVersion string
    Current version of the MSK Cluster used for updates, e.g., K13V1IB3VIYZZH

    • encryption_info.0.encryption_at_rest_kms_key_arn - The ARN of the KMS key used for encryption at rest of the broker data volumes.
    EncryptionInfo ClusterEncryptionInfo
    Configuration block for specifying encryption. See below.
    EnhancedMonitoring string
    Specify the desired enhanced MSK CloudWatch monitoring level. See Monitoring Amazon MSK with Amazon CloudWatch
    KafkaVersion string
    Specify the desired Kafka software version.
    LoggingInfo ClusterLoggingInfo
    Configuration block for streaming broker logs to Cloudwatch/S3/Kinesis Firehose. See below.
    NumberOfBrokerNodes int
    The desired total number of broker nodes in the kafka cluster. It must be a multiple of the number of specified client subnets.
    OpenMonitoring ClusterOpenMonitoring
    Configuration block for JMX and Node monitoring for the MSK cluster. See below.
    StorageMode string
    Controls storage mode for supported storage tiers. Valid values are: LOCAL or TIERED.
    Tags Dictionary<string, string>
    A map of tags to assign to the resource. .If configured with a provider default_tags configuration block present, tags with matching keys will overwrite those defined at the provider-level.
    TagsAll Dictionary<string, string>
    A map of tags assigned to the resource, including those inherited from the provider default_tags configuration block.

    Deprecated:Please use tags instead.

    ZookeeperConnectString string
    A comma separated list of one or more hostname:port pairs to use to connect to the Apache Zookeeper cluster. The returned values are sorted alphabetically. The AWS API may not return all endpoints, so this value is not guaranteed to be stable across applies.
    ZookeeperConnectStringTls string
    A comma separated list of one or more hostname:port pairs to use to connect to the Apache Zookeeper cluster via TLS. The returned values are sorted alphabetically. The AWS API may not return all endpoints, so this value is not guaranteed to be stable across applies.
    Arn string
    Amazon Resource Name (ARN) of the MSK Configuration to use in the cluster.
    BootstrapBrokers string
    Comma separated list of one or more hostname:port pairs of kafka brokers suitable to bootstrap connectivity to the kafka cluster. Contains a value if encryption_info.0.encryption_in_transit.0.client_broker is set to PLAINTEXT or TLS_PLAINTEXT. The resource sorts values alphabetically. AWS may not always return all endpoints so this value is not guaranteed to be stable across applies.
    BootstrapBrokersPublicSaslIam string
    One or more DNS names (or IP addresses) and SASL IAM port pairs. For example, b-1-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9198,b-2-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9198,b-3-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9198. This attribute will have a value if encryption_info.0.encryption_in_transit.0.client_broker is set to TLS_PLAINTEXT or TLS and client_authentication.0.sasl.0.iam is set to true and broker_node_group_info.0.connectivity_info.0.public_access.0.type is set to SERVICE_PROVIDED_EIPS and the cluster fulfill all other requirements for public access. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies.
    BootstrapBrokersPublicSaslScram string
    One or more DNS names (or IP addresses) and SASL SCRAM port pairs. For example, b-1-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9196,b-2-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9196,b-3-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9196. This attribute will have a value if encryption_info.0.encryption_in_transit.0.client_broker is set to TLS_PLAINTEXT or TLS and client_authentication.0.sasl.0.scram is set to true and broker_node_group_info.0.connectivity_info.0.public_access.0.type is set to SERVICE_PROVIDED_EIPS and the cluster fulfill all other requirements for public access. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies.
    BootstrapBrokersPublicTls string
    One or more DNS names (or IP addresses) and TLS port pairs. For example, b-1-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9194,b-2-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9194,b-3-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9194. This attribute will have a value if encryption_info.0.encryption_in_transit.0.client_broker is set to TLS_PLAINTEXT or TLS and broker_node_group_info.0.connectivity_info.0.public_access.0.type is set to SERVICE_PROVIDED_EIPS and the cluster fulfill all other requirements for public access. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies.
    BootstrapBrokersSaslIam string
    One or more DNS names (or IP addresses) and SASL IAM port pairs. For example, b-1.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9098,b-2.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9098,b-3.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9098. This attribute will have a value if encryption_info.0.encryption_in_transit.0.client_broker is set to TLS_PLAINTEXT or TLS and client_authentication.0.sasl.0.iam is set to true. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies.
    BootstrapBrokersSaslScram string
    One or more DNS names (or IP addresses) and SASL SCRAM port pairs. For example, b-1.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9096,b-2.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9096,b-3.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9096. This attribute will have a value if encryption_info.0.encryption_in_transit.0.client_broker is set to TLS_PLAINTEXT or TLS and client_authentication.0.sasl.0.scram is set to true. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies.
    BootstrapBrokersTls string
    One or more DNS names (or IP addresses) and TLS port pairs. For example, b-1.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9094,b-2.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9094,b-3.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9094. This attribute will have a value if encryption_info.0.encryption_in_transit.0.client_broker is set to TLS_PLAINTEXT or TLS. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies.
    BootstrapBrokersVpcConnectivitySaslIam string
    A string containing one or more DNS names (or IP addresses) and SASL IAM port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.
    BootstrapBrokersVpcConnectivitySaslScram string
    A string containing one or more DNS names (or IP addresses) and SASL SCRAM port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.
    BootstrapBrokersVpcConnectivityTls string
    A string containing one or more DNS names (or IP addresses) and TLS port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.
    BrokerNodeGroupInfo ClusterBrokerNodeGroupInfoArgs
    Configuration block for the broker nodes of the Kafka cluster.
    ClientAuthentication ClusterClientAuthenticationArgs
    Configuration block for specifying a client authentication. See below.
    ClusterName string
    Name of the MSK cluster.
    ClusterUuid string
    UUID of the MSK cluster, for use in IAM policies.
    ConfigurationInfo ClusterConfigurationInfoArgs
    Configuration block for specifying a MSK Configuration to attach to Kafka brokers. See below.
    CurrentVersion string
    Current version of the MSK Cluster used for updates, e.g., K13V1IB3VIYZZH

    • encryption_info.0.encryption_at_rest_kms_key_arn - The ARN of the KMS key used for encryption at rest of the broker data volumes.
    EncryptionInfo ClusterEncryptionInfoArgs
    Configuration block for specifying encryption. See below.
    EnhancedMonitoring string
    Specify the desired enhanced MSK CloudWatch monitoring level. See Monitoring Amazon MSK with Amazon CloudWatch
    KafkaVersion string
    Specify the desired Kafka software version.
    LoggingInfo ClusterLoggingInfoArgs
    Configuration block for streaming broker logs to Cloudwatch/S3/Kinesis Firehose. See below.
    NumberOfBrokerNodes int
    The desired total number of broker nodes in the kafka cluster. It must be a multiple of the number of specified client subnets.
    OpenMonitoring ClusterOpenMonitoringArgs
    Configuration block for JMX and Node monitoring for the MSK cluster. See below.
    StorageMode string
    Controls storage mode for supported storage tiers. Valid values are: LOCAL or TIERED.
    Tags map[string]string
    A map of tags to assign to the resource. .If configured with a provider default_tags configuration block present, tags with matching keys will overwrite those defined at the provider-level.
    TagsAll map[string]string
    A map of tags assigned to the resource, including those inherited from the provider default_tags configuration block.

    Deprecated:Please use tags instead.

    ZookeeperConnectString string
    A comma separated list of one or more hostname:port pairs to use to connect to the Apache Zookeeper cluster. The returned values are sorted alphabetically. The AWS API may not return all endpoints, so this value is not guaranteed to be stable across applies.
    ZookeeperConnectStringTls string
    A comma separated list of one or more hostname:port pairs to use to connect to the Apache Zookeeper cluster via TLS. The returned values are sorted alphabetically. The AWS API may not return all endpoints, so this value is not guaranteed to be stable across applies.
    arn String
    Amazon Resource Name (ARN) of the MSK Configuration to use in the cluster.
    bootstrapBrokers String
    Comma separated list of one or more hostname:port pairs of kafka brokers suitable to bootstrap connectivity to the kafka cluster. Contains a value if encryption_info.0.encryption_in_transit.0.client_broker is set to PLAINTEXT or TLS_PLAINTEXT. The resource sorts values alphabetically. AWS may not always return all endpoints so this value is not guaranteed to be stable across applies.
    bootstrapBrokersPublicSaslIam String
    One or more DNS names (or IP addresses) and SASL IAM port pairs. For example, b-1-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9198,b-2-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9198,b-3-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9198. This attribute will have a value if encryption_info.0.encryption_in_transit.0.client_broker is set to TLS_PLAINTEXT or TLS and client_authentication.0.sasl.0.iam is set to true and broker_node_group_info.0.connectivity_info.0.public_access.0.type is set to SERVICE_PROVIDED_EIPS and the cluster fulfill all other requirements for public access. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies.
    bootstrapBrokersPublicSaslScram String
    One or more DNS names (or IP addresses) and SASL SCRAM port pairs. For example, b-1-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9196,b-2-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9196,b-3-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9196. This attribute will have a value if encryption_info.0.encryption_in_transit.0.client_broker is set to TLS_PLAINTEXT or TLS and client_authentication.0.sasl.0.scram is set to true and broker_node_group_info.0.connectivity_info.0.public_access.0.type is set to SERVICE_PROVIDED_EIPS and the cluster fulfill all other requirements for public access. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies.
    bootstrapBrokersPublicTls String
    One or more DNS names (or IP addresses) and TLS port pairs. For example, b-1-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9194,b-2-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9194,b-3-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9194. This attribute will have a value if encryption_info.0.encryption_in_transit.0.client_broker is set to TLS_PLAINTEXT or TLS and broker_node_group_info.0.connectivity_info.0.public_access.0.type is set to SERVICE_PROVIDED_EIPS and the cluster fulfill all other requirements for public access. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies.
    bootstrapBrokersSaslIam String
    One or more DNS names (or IP addresses) and SASL IAM port pairs. For example, b-1.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9098,b-2.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9098,b-3.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9098. This attribute will have a value if encryption_info.0.encryption_in_transit.0.client_broker is set to TLS_PLAINTEXT or TLS and client_authentication.0.sasl.0.iam is set to true. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies.
    bootstrapBrokersSaslScram String
    One or more DNS names (or IP addresses) and SASL SCRAM port pairs. For example, b-1.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9096,b-2.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9096,b-3.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9096. This attribute will have a value if encryption_info.0.encryption_in_transit.0.client_broker is set to TLS_PLAINTEXT or TLS and client_authentication.0.sasl.0.scram is set to true. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies.
    bootstrapBrokersTls String
    One or more DNS names (or IP addresses) and TLS port pairs. For example, b-1.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9094,b-2.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9094,b-3.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9094. This attribute will have a value if encryption_info.0.encryption_in_transit.0.client_broker is set to TLS_PLAINTEXT or TLS. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies.
    bootstrapBrokersVpcConnectivitySaslIam String
    A string containing one or more DNS names (or IP addresses) and SASL IAM port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.
    bootstrapBrokersVpcConnectivitySaslScram String
    A string containing one or more DNS names (or IP addresses) and SASL SCRAM port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.
    bootstrapBrokersVpcConnectivityTls String
    A string containing one or more DNS names (or IP addresses) and TLS port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.
    brokerNodeGroupInfo ClusterBrokerNodeGroupInfo
    Configuration block for the broker nodes of the Kafka cluster.
    clientAuthentication ClusterClientAuthentication
    Configuration block for specifying a client authentication. See below.
    clusterName String
    Name of the MSK cluster.
    clusterUuid String
    UUID of the MSK cluster, for use in IAM policies.
    configurationInfo ClusterConfigurationInfo
    Configuration block for specifying a MSK Configuration to attach to Kafka brokers. See below.
    currentVersion String
    Current version of the MSK Cluster used for updates, e.g., K13V1IB3VIYZZH

    • encryption_info.0.encryption_at_rest_kms_key_arn - The ARN of the KMS key used for encryption at rest of the broker data volumes.
    encryptionInfo ClusterEncryptionInfo
    Configuration block for specifying encryption. See below.
    enhancedMonitoring String
    Specify the desired enhanced MSK CloudWatch monitoring level. See Monitoring Amazon MSK with Amazon CloudWatch
    kafkaVersion String
    Specify the desired Kafka software version.
    loggingInfo ClusterLoggingInfo
    Configuration block for streaming broker logs to Cloudwatch/S3/Kinesis Firehose. See below.
    numberOfBrokerNodes Integer
    The desired total number of broker nodes in the kafka cluster. It must be a multiple of the number of specified client subnets.
    openMonitoring ClusterOpenMonitoring
    Configuration block for JMX and Node monitoring for the MSK cluster. See below.
    storageMode String
    Controls storage mode for supported storage tiers. Valid values are: LOCAL or TIERED.
    tags Map<String,String>
    A map of tags to assign to the resource. .If configured with a provider default_tags configuration block present, tags with matching keys will overwrite those defined at the provider-level.
    tagsAll Map<String,String>
    A map of tags assigned to the resource, including those inherited from the provider default_tags configuration block.

    Deprecated:Please use tags instead.

    zookeeperConnectString String
    A comma separated list of one or more hostname:port pairs to use to connect to the Apache Zookeeper cluster. The returned values are sorted alphabetically. The AWS API may not return all endpoints, so this value is not guaranteed to be stable across applies.
    zookeeperConnectStringTls String
    A comma separated list of one or more hostname:port pairs to use to connect to the Apache Zookeeper cluster via TLS. The returned values are sorted alphabetically. The AWS API may not return all endpoints, so this value is not guaranteed to be stable across applies.
    arn string
    Amazon Resource Name (ARN) of the MSK Configuration to use in the cluster.
    bootstrapBrokers string
    Comma separated list of one or more hostname:port pairs of kafka brokers suitable to bootstrap connectivity to the kafka cluster. Contains a value if encryption_info.0.encryption_in_transit.0.client_broker is set to PLAINTEXT or TLS_PLAINTEXT. The resource sorts values alphabetically. AWS may not always return all endpoints so this value is not guaranteed to be stable across applies.
    bootstrapBrokersPublicSaslIam string
    One or more DNS names (or IP addresses) and SASL IAM port pairs. For example, b-1-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9198,b-2-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9198,b-3-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9198. This attribute will have a value if encryption_info.0.encryption_in_transit.0.client_broker is set to TLS_PLAINTEXT or TLS and client_authentication.0.sasl.0.iam is set to true and broker_node_group_info.0.connectivity_info.0.public_access.0.type is set to SERVICE_PROVIDED_EIPS and the cluster fulfill all other requirements for public access. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies.
    bootstrapBrokersPublicSaslScram string
    One or more DNS names (or IP addresses) and SASL SCRAM port pairs. For example, b-1-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9196,b-2-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9196,b-3-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9196. This attribute will have a value if encryption_info.0.encryption_in_transit.0.client_broker is set to TLS_PLAINTEXT or TLS and client_authentication.0.sasl.0.scram is set to true and broker_node_group_info.0.connectivity_info.0.public_access.0.type is set to SERVICE_PROVIDED_EIPS and the cluster fulfill all other requirements for public access. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies.
    bootstrapBrokersPublicTls string
    One or more DNS names (or IP addresses) and TLS port pairs. For example, b-1-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9194,b-2-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9194,b-3-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9194. This attribute will have a value if encryption_info.0.encryption_in_transit.0.client_broker is set to TLS_PLAINTEXT or TLS and broker_node_group_info.0.connectivity_info.0.public_access.0.type is set to SERVICE_PROVIDED_EIPS and the cluster fulfill all other requirements for public access. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies.
    bootstrapBrokersSaslIam string
    One or more DNS names (or IP addresses) and SASL IAM port pairs. For example, b-1.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9098,b-2.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9098,b-3.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9098. This attribute will have a value if encryption_info.0.encryption_in_transit.0.client_broker is set to TLS_PLAINTEXT or TLS and client_authentication.0.sasl.0.iam is set to true. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies.
    bootstrapBrokersSaslScram string
    One or more DNS names (or IP addresses) and SASL SCRAM port pairs. For example, b-1.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9096,b-2.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9096,b-3.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9096. This attribute will have a value if encryption_info.0.encryption_in_transit.0.client_broker is set to TLS_PLAINTEXT or TLS and client_authentication.0.sasl.0.scram is set to true. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies.
    bootstrapBrokersTls string
    One or more DNS names (or IP addresses) and TLS port pairs. For example, b-1.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9094,b-2.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9094,b-3.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9094. This attribute will have a value if encryption_info.0.encryption_in_transit.0.client_broker is set to TLS_PLAINTEXT or TLS. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies.
    bootstrapBrokersVpcConnectivitySaslIam string
    A string containing one or more DNS names (or IP addresses) and SASL IAM port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.
    bootstrapBrokersVpcConnectivitySaslScram string
    A string containing one or more DNS names (or IP addresses) and SASL SCRAM port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.
    bootstrapBrokersVpcConnectivityTls string
    A string containing one or more DNS names (or IP addresses) and TLS port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.
    brokerNodeGroupInfo ClusterBrokerNodeGroupInfo
    Configuration block for the broker nodes of the Kafka cluster.
    clientAuthentication ClusterClientAuthentication
    Configuration block for specifying a client authentication. See below.
    clusterName string
    Name of the MSK cluster.
    clusterUuid string
    UUID of the MSK cluster, for use in IAM policies.
    configurationInfo ClusterConfigurationInfo
    Configuration block for specifying a MSK Configuration to attach to Kafka brokers. See below.
    currentVersion string
    Current version of the MSK Cluster used for updates, e.g., K13V1IB3VIYZZH

    • encryption_info.0.encryption_at_rest_kms_key_arn - The ARN of the KMS key used for encryption at rest of the broker data volumes.
    encryptionInfo ClusterEncryptionInfo
    Configuration block for specifying encryption. See below.
    enhancedMonitoring string
    Specify the desired enhanced MSK CloudWatch monitoring level. See Monitoring Amazon MSK with Amazon CloudWatch
    kafkaVersion string
    Specify the desired Kafka software version.
    loggingInfo ClusterLoggingInfo
    Configuration block for streaming broker logs to Cloudwatch/S3/Kinesis Firehose. See below.
    numberOfBrokerNodes number
    The desired total number of broker nodes in the kafka cluster. It must be a multiple of the number of specified client subnets.
    openMonitoring ClusterOpenMonitoring
    Configuration block for JMX and Node monitoring for the MSK cluster. See below.
    storageMode string
    Controls storage mode for supported storage tiers. Valid values are: LOCAL or TIERED.
    tags {[key: string]: string}
    A map of tags to assign to the resource. .If configured with a provider default_tags configuration block present, tags with matching keys will overwrite those defined at the provider-level.
    tagsAll {[key: string]: string}
    A map of tags assigned to the resource, including those inherited from the provider default_tags configuration block.

    Deprecated:Please use tags instead.

    zookeeperConnectString string
    A comma separated list of one or more hostname:port pairs to use to connect to the Apache Zookeeper cluster. The returned values are sorted alphabetically. The AWS API may not return all endpoints, so this value is not guaranteed to be stable across applies.
    zookeeperConnectStringTls string
    A comma separated list of one or more hostname:port pairs to use to connect to the Apache Zookeeper cluster via TLS. The returned values are sorted alphabetically. The AWS API may not return all endpoints, so this value is not guaranteed to be stable across applies.
    arn str
    Amazon Resource Name (ARN) of the MSK Configuration to use in the cluster.
    bootstrap_brokers str
    Comma separated list of one or more hostname:port pairs of kafka brokers suitable to bootstrap connectivity to the kafka cluster. Contains a value if encryption_info.0.encryption_in_transit.0.client_broker is set to PLAINTEXT or TLS_PLAINTEXT. The resource sorts values alphabetically. AWS may not always return all endpoints so this value is not guaranteed to be stable across applies.
    bootstrap_brokers_public_sasl_iam str
    One or more DNS names (or IP addresses) and SASL IAM port pairs. For example, b-1-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9198,b-2-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9198,b-3-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9198. This attribute will have a value if encryption_info.0.encryption_in_transit.0.client_broker is set to TLS_PLAINTEXT or TLS and client_authentication.0.sasl.0.iam is set to true and broker_node_group_info.0.connectivity_info.0.public_access.0.type is set to SERVICE_PROVIDED_EIPS and the cluster fulfill all other requirements for public access. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies.
    bootstrap_brokers_public_sasl_scram str
    One or more DNS names (or IP addresses) and SASL SCRAM port pairs. For example, b-1-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9196,b-2-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9196,b-3-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9196. This attribute will have a value if encryption_info.0.encryption_in_transit.0.client_broker is set to TLS_PLAINTEXT or TLS and client_authentication.0.sasl.0.scram is set to true and broker_node_group_info.0.connectivity_info.0.public_access.0.type is set to SERVICE_PROVIDED_EIPS and the cluster fulfill all other requirements for public access. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies.
    bootstrap_brokers_public_tls str
    One or more DNS names (or IP addresses) and TLS port pairs. For example, b-1-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9194,b-2-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9194,b-3-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9194. This attribute will have a value if encryption_info.0.encryption_in_transit.0.client_broker is set to TLS_PLAINTEXT or TLS and broker_node_group_info.0.connectivity_info.0.public_access.0.type is set to SERVICE_PROVIDED_EIPS and the cluster fulfill all other requirements for public access. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies.
    bootstrap_brokers_sasl_iam str
    One or more DNS names (or IP addresses) and SASL IAM port pairs. For example, b-1.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9098,b-2.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9098,b-3.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9098. This attribute will have a value if encryption_info.0.encryption_in_transit.0.client_broker is set to TLS_PLAINTEXT or TLS and client_authentication.0.sasl.0.iam is set to true. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies.
    bootstrap_brokers_sasl_scram str
    One or more DNS names (or IP addresses) and SASL SCRAM port pairs. For example, b-1.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9096,b-2.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9096,b-3.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9096. This attribute will have a value if encryption_info.0.encryption_in_transit.0.client_broker is set to TLS_PLAINTEXT or TLS and client_authentication.0.sasl.0.scram is set to true. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies.
    bootstrap_brokers_tls str
    One or more DNS names (or IP addresses) and TLS port pairs. For example, b-1.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9094,b-2.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9094,b-3.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9094. This attribute will have a value if encryption_info.0.encryption_in_transit.0.client_broker is set to TLS_PLAINTEXT or TLS. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies.
    bootstrap_brokers_vpc_connectivity_sasl_iam str
    A string containing one or more DNS names (or IP addresses) and SASL IAM port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.
    bootstrap_brokers_vpc_connectivity_sasl_scram str
    A string containing one or more DNS names (or IP addresses) and SASL SCRAM port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.
    bootstrap_brokers_vpc_connectivity_tls str
    A string containing one or more DNS names (or IP addresses) and TLS port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.
    broker_node_group_info ClusterBrokerNodeGroupInfoArgs
    Configuration block for the broker nodes of the Kafka cluster.
    client_authentication ClusterClientAuthenticationArgs
    Configuration block for specifying a client authentication. See below.
    cluster_name str
    Name of the MSK cluster.
    cluster_uuid str
    UUID of the MSK cluster, for use in IAM policies.
    configuration_info ClusterConfigurationInfoArgs
    Configuration block for specifying a MSK Configuration to attach to Kafka brokers. See below.
    current_version str
    Current version of the MSK Cluster used for updates, e.g., K13V1IB3VIYZZH

    • encryption_info.0.encryption_at_rest_kms_key_arn - The ARN of the KMS key used for encryption at rest of the broker data volumes.
    encryption_info ClusterEncryptionInfoArgs
    Configuration block for specifying encryption. See below.
    enhanced_monitoring str
    Specify the desired enhanced MSK CloudWatch monitoring level. See Monitoring Amazon MSK with Amazon CloudWatch
    kafka_version str
    Specify the desired Kafka software version.
    logging_info ClusterLoggingInfoArgs
    Configuration block for streaming broker logs to Cloudwatch/S3/Kinesis Firehose. See below.
    number_of_broker_nodes int
    The desired total number of broker nodes in the kafka cluster. It must be a multiple of the number of specified client subnets.
    open_monitoring ClusterOpenMonitoringArgs
    Configuration block for JMX and Node monitoring for the MSK cluster. See below.
    storage_mode str
    Controls storage mode for supported storage tiers. Valid values are: LOCAL or TIERED.
    tags Mapping[str, str]
    A map of tags to assign to the resource. .If configured with a provider default_tags configuration block present, tags with matching keys will overwrite those defined at the provider-level.
    tags_all Mapping[str, str]
    A map of tags assigned to the resource, including those inherited from the provider default_tags configuration block.

    Deprecated:Please use tags instead.

    zookeeper_connect_string str
    A comma separated list of one or more hostname:port pairs to use to connect to the Apache Zookeeper cluster. The returned values are sorted alphabetically. The AWS API may not return all endpoints, so this value is not guaranteed to be stable across applies.
    zookeeper_connect_string_tls str
    A comma separated list of one or more hostname:port pairs to use to connect to the Apache Zookeeper cluster via TLS. The returned values are sorted alphabetically. The AWS API may not return all endpoints, so this value is not guaranteed to be stable across applies.
    arn String
    Amazon Resource Name (ARN) of the MSK Configuration to use in the cluster.
    bootstrapBrokers String
    Comma separated list of one or more hostname:port pairs of kafka brokers suitable to bootstrap connectivity to the kafka cluster. Contains a value if encryption_info.0.encryption_in_transit.0.client_broker is set to PLAINTEXT or TLS_PLAINTEXT. The resource sorts values alphabetically. AWS may not always return all endpoints so this value is not guaranteed to be stable across applies.
    bootstrapBrokersPublicSaslIam String
    One or more DNS names (or IP addresses) and SASL IAM port pairs. For example, b-1-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9198,b-2-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9198,b-3-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9198. This attribute will have a value if encryption_info.0.encryption_in_transit.0.client_broker is set to TLS_PLAINTEXT or TLS and client_authentication.0.sasl.0.iam is set to true and broker_node_group_info.0.connectivity_info.0.public_access.0.type is set to SERVICE_PROVIDED_EIPS and the cluster fulfill all other requirements for public access. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies.
    bootstrapBrokersPublicSaslScram String
    One or more DNS names (or IP addresses) and SASL SCRAM port pairs. For example, b-1-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9196,b-2-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9196,b-3-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9196. This attribute will have a value if encryption_info.0.encryption_in_transit.0.client_broker is set to TLS_PLAINTEXT or TLS and client_authentication.0.sasl.0.scram is set to true and broker_node_group_info.0.connectivity_info.0.public_access.0.type is set to SERVICE_PROVIDED_EIPS and the cluster fulfill all other requirements for public access. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies.
    bootstrapBrokersPublicTls String
    One or more DNS names (or IP addresses) and TLS port pairs. For example, b-1-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9194,b-2-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9194,b-3-public.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9194. This attribute will have a value if encryption_info.0.encryption_in_transit.0.client_broker is set to TLS_PLAINTEXT or TLS and broker_node_group_info.0.connectivity_info.0.public_access.0.type is set to SERVICE_PROVIDED_EIPS and the cluster fulfill all other requirements for public access. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies.
    bootstrapBrokersSaslIam String
    One or more DNS names (or IP addresses) and SASL IAM port pairs. For example, b-1.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9098,b-2.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9098,b-3.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9098. This attribute will have a value if encryption_info.0.encryption_in_transit.0.client_broker is set to TLS_PLAINTEXT or TLS and client_authentication.0.sasl.0.iam is set to true. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies.
    bootstrapBrokersSaslScram String
    One or more DNS names (or IP addresses) and SASL SCRAM port pairs. For example, b-1.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9096,b-2.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9096,b-3.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9096. This attribute will have a value if encryption_info.0.encryption_in_transit.0.client_broker is set to TLS_PLAINTEXT or TLS and client_authentication.0.sasl.0.scram is set to true. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies.
    bootstrapBrokersTls String
    One or more DNS names (or IP addresses) and TLS port pairs. For example, b-1.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9094,b-2.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9094,b-3.exampleClusterName.abcde.c2.kafka.us-east-1.amazonaws.com:9094. This attribute will have a value if encryption_info.0.encryption_in_transit.0.client_broker is set to TLS_PLAINTEXT or TLS. The resource sorts the list alphabetically. AWS may not always return all endpoints so the values may not be stable across applies.
    bootstrapBrokersVpcConnectivitySaslIam String
    A string containing one or more DNS names (or IP addresses) and SASL IAM port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.
    bootstrapBrokersVpcConnectivitySaslScram String
    A string containing one or more DNS names (or IP addresses) and SASL SCRAM port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.
    bootstrapBrokersVpcConnectivityTls String
    A string containing one or more DNS names (or IP addresses) and TLS port pairs for VPC connectivity. AWS may not always return all endpoints so the values may not be stable across applies.
    brokerNodeGroupInfo Property Map
    Configuration block for the broker nodes of the Kafka cluster.
    clientAuthentication Property Map
    Configuration block for specifying a client authentication. See below.
    clusterName String
    Name of the MSK cluster.
    clusterUuid String
    UUID of the MSK cluster, for use in IAM policies.
    configurationInfo Property Map
    Configuration block for specifying a MSK Configuration to attach to Kafka brokers. See below.
    currentVersion String
    Current version of the MSK Cluster used for updates, e.g., K13V1IB3VIYZZH

    • encryption_info.0.encryption_at_rest_kms_key_arn - The ARN of the KMS key used for encryption at rest of the broker data volumes.
    encryptionInfo Property Map
    Configuration block for specifying encryption. See below.
    enhancedMonitoring String
    Specify the desired enhanced MSK CloudWatch monitoring level. See Monitoring Amazon MSK with Amazon CloudWatch
    kafkaVersion String
    Specify the desired Kafka software version.
    loggingInfo Property Map
    Configuration block for streaming broker logs to Cloudwatch/S3/Kinesis Firehose. See below.
    numberOfBrokerNodes Number
    The desired total number of broker nodes in the kafka cluster. It must be a multiple of the number of specified client subnets.
    openMonitoring Property Map
    Configuration block for JMX and Node monitoring for the MSK cluster. See below.
    storageMode String
    Controls storage mode for supported storage tiers. Valid values are: LOCAL or TIERED.
    tags Map<String>
    A map of tags to assign to the resource. .If configured with a provider default_tags configuration block present, tags with matching keys will overwrite those defined at the provider-level.
    tagsAll Map<String>
    A map of tags assigned to the resource, including those inherited from the provider default_tags configuration block.

    Deprecated:Please use tags instead.

    zookeeperConnectString String
    A comma separated list of one or more hostname:port pairs to use to connect to the Apache Zookeeper cluster. The returned values are sorted alphabetically. The AWS API may not return all endpoints, so this value is not guaranteed to be stable across applies.
    zookeeperConnectStringTls String
    A comma separated list of one or more hostname:port pairs to use to connect to the Apache Zookeeper cluster via TLS. The returned values are sorted alphabetically. The AWS API may not return all endpoints, so this value is not guaranteed to be stable across applies.

    Supporting Types

    ClusterBrokerNodeGroupInfo, ClusterBrokerNodeGroupInfoArgs

    ClientSubnets List<string>
    A list of subnets to connect to in client VPC (documentation).
    InstanceType string
    Specify the instance type to use for the kafka brokersE.g., kafka.m5.large. (Pricing info)
    SecurityGroups List<string>
    A list of the security groups to associate with the elastic network interfaces to control who can communicate with the cluster.
    AzDistribution string
    The distribution of broker nodes across availability zones (documentation). Currently the only valid value is DEFAULT.
    ConnectivityInfo ClusterBrokerNodeGroupInfoConnectivityInfo
    Information about the cluster access configuration. See below. For security reasons, you can't turn on public access while creating an MSK cluster. However, you can update an existing cluster to make it publicly accessible. You can also create a new cluster and then update it to make it publicly accessible (documentation).
    StorageInfo ClusterBrokerNodeGroupInfoStorageInfo
    A block that contains information about storage volumes attached to MSK broker nodes. See below.
    ClientSubnets []string
    A list of subnets to connect to in client VPC (documentation).
    InstanceType string
    Specify the instance type to use for the kafka brokersE.g., kafka.m5.large. (Pricing info)
    SecurityGroups []string
    A list of the security groups to associate with the elastic network interfaces to control who can communicate with the cluster.
    AzDistribution string
    The distribution of broker nodes across availability zones (documentation). Currently the only valid value is DEFAULT.
    ConnectivityInfo ClusterBrokerNodeGroupInfoConnectivityInfo
    Information about the cluster access configuration. See below. For security reasons, you can't turn on public access while creating an MSK cluster. However, you can update an existing cluster to make it publicly accessible. You can also create a new cluster and then update it to make it publicly accessible (documentation).
    StorageInfo ClusterBrokerNodeGroupInfoStorageInfo
    A block that contains information about storage volumes attached to MSK broker nodes. See below.
    clientSubnets List<String>
    A list of subnets to connect to in client VPC (documentation).
    instanceType String
    Specify the instance type to use for the kafka brokersE.g., kafka.m5.large. (Pricing info)
    securityGroups List<String>
    A list of the security groups to associate with the elastic network interfaces to control who can communicate with the cluster.
    azDistribution String
    The distribution of broker nodes across availability zones (documentation). Currently the only valid value is DEFAULT.
    connectivityInfo ClusterBrokerNodeGroupInfoConnectivityInfo
    Information about the cluster access configuration. See below. For security reasons, you can't turn on public access while creating an MSK cluster. However, you can update an existing cluster to make it publicly accessible. You can also create a new cluster and then update it to make it publicly accessible (documentation).
    storageInfo ClusterBrokerNodeGroupInfoStorageInfo
    A block that contains information about storage volumes attached to MSK broker nodes. See below.
    clientSubnets string[]
    A list of subnets to connect to in client VPC (documentation).
    instanceType string
    Specify the instance type to use for the kafka brokersE.g., kafka.m5.large. (Pricing info)
    securityGroups string[]
    A list of the security groups to associate with the elastic network interfaces to control who can communicate with the cluster.
    azDistribution string
    The distribution of broker nodes across availability zones (documentation). Currently the only valid value is DEFAULT.
    connectivityInfo ClusterBrokerNodeGroupInfoConnectivityInfo
    Information about the cluster access configuration. See below. For security reasons, you can't turn on public access while creating an MSK cluster. However, you can update an existing cluster to make it publicly accessible. You can also create a new cluster and then update it to make it publicly accessible (documentation).
    storageInfo ClusterBrokerNodeGroupInfoStorageInfo
    A block that contains information about storage volumes attached to MSK broker nodes. See below.
    client_subnets Sequence[str]
    A list of subnets to connect to in client VPC (documentation).
    instance_type str
    Specify the instance type to use for the kafka brokersE.g., kafka.m5.large. (Pricing info)
    security_groups Sequence[str]
    A list of the security groups to associate with the elastic network interfaces to control who can communicate with the cluster.
    az_distribution str
    The distribution of broker nodes across availability zones (documentation). Currently the only valid value is DEFAULT.
    connectivity_info ClusterBrokerNodeGroupInfoConnectivityInfo
    Information about the cluster access configuration. See below. For security reasons, you can't turn on public access while creating an MSK cluster. However, you can update an existing cluster to make it publicly accessible. You can also create a new cluster and then update it to make it publicly accessible (documentation).
    storage_info ClusterBrokerNodeGroupInfoStorageInfo
    A block that contains information about storage volumes attached to MSK broker nodes. See below.
    clientSubnets List<String>
    A list of subnets to connect to in client VPC (documentation).
    instanceType String
    Specify the instance type to use for the kafka brokersE.g., kafka.m5.large. (Pricing info)
    securityGroups List<String>
    A list of the security groups to associate with the elastic network interfaces to control who can communicate with the cluster.
    azDistribution String
    The distribution of broker nodes across availability zones (documentation). Currently the only valid value is DEFAULT.
    connectivityInfo Property Map
    Information about the cluster access configuration. See below. For security reasons, you can't turn on public access while creating an MSK cluster. However, you can update an existing cluster to make it publicly accessible. You can also create a new cluster and then update it to make it publicly accessible (documentation).
    storageInfo Property Map
    A block that contains information about storage volumes attached to MSK broker nodes. See below.

    ClusterBrokerNodeGroupInfoConnectivityInfo, ClusterBrokerNodeGroupInfoConnectivityInfoArgs

    PublicAccess ClusterBrokerNodeGroupInfoConnectivityInfoPublicAccess
    Access control settings for brokers. See below.
    VpcConnectivity ClusterBrokerNodeGroupInfoConnectivityInfoVpcConnectivity
    VPC connectivity access control for brokers. See below.
    PublicAccess ClusterBrokerNodeGroupInfoConnectivityInfoPublicAccess
    Access control settings for brokers. See below.
    VpcConnectivity ClusterBrokerNodeGroupInfoConnectivityInfoVpcConnectivity
    VPC connectivity access control for brokers. See below.
    publicAccess ClusterBrokerNodeGroupInfoConnectivityInfoPublicAccess
    Access control settings for brokers. See below.
    vpcConnectivity ClusterBrokerNodeGroupInfoConnectivityInfoVpcConnectivity
    VPC connectivity access control for brokers. See below.
    publicAccess ClusterBrokerNodeGroupInfoConnectivityInfoPublicAccess
    Access control settings for brokers. See below.
    vpcConnectivity ClusterBrokerNodeGroupInfoConnectivityInfoVpcConnectivity
    VPC connectivity access control for brokers. See below.
    public_access ClusterBrokerNodeGroupInfoConnectivityInfoPublicAccess
    Access control settings for brokers. See below.
    vpc_connectivity ClusterBrokerNodeGroupInfoConnectivityInfoVpcConnectivity
    VPC connectivity access control for brokers. See below.
    publicAccess Property Map
    Access control settings for brokers. See below.
    vpcConnectivity Property Map
    VPC connectivity access control for brokers. See below.

    ClusterBrokerNodeGroupInfoConnectivityInfoPublicAccess, ClusterBrokerNodeGroupInfoConnectivityInfoPublicAccessArgs

    Type string
    Public access type. Valid values: DISABLED, SERVICE_PROVIDED_EIPS.
    Type string
    Public access type. Valid values: DISABLED, SERVICE_PROVIDED_EIPS.
    type String
    Public access type. Valid values: DISABLED, SERVICE_PROVIDED_EIPS.
    type string
    Public access type. Valid values: DISABLED, SERVICE_PROVIDED_EIPS.
    type str
    Public access type. Valid values: DISABLED, SERVICE_PROVIDED_EIPS.
    type String
    Public access type. Valid values: DISABLED, SERVICE_PROVIDED_EIPS.

    ClusterBrokerNodeGroupInfoConnectivityInfoVpcConnectivity, ClusterBrokerNodeGroupInfoConnectivityInfoVpcConnectivityArgs

    ClientAuthentication ClusterBrokerNodeGroupInfoConnectivityInfoVpcConnectivityClientAuthentication
    Configuration block for specifying a client authentication. See below.
    ClientAuthentication ClusterBrokerNodeGroupInfoConnectivityInfoVpcConnectivityClientAuthentication
    Configuration block for specifying a client authentication. See below.
    clientAuthentication ClusterBrokerNodeGroupInfoConnectivityInfoVpcConnectivityClientAuthentication
    Configuration block for specifying a client authentication. See below.
    clientAuthentication ClusterBrokerNodeGroupInfoConnectivityInfoVpcConnectivityClientAuthentication
    Configuration block for specifying a client authentication. See below.
    client_authentication ClusterBrokerNodeGroupInfoConnectivityInfoVpcConnectivityClientAuthentication
    Configuration block for specifying a client authentication. See below.
    clientAuthentication Property Map
    Configuration block for specifying a client authentication. See below.

    ClusterBrokerNodeGroupInfoConnectivityInfoVpcConnectivityClientAuthentication, ClusterBrokerNodeGroupInfoConnectivityInfoVpcConnectivityClientAuthenticationArgs

    Sasl ClusterBrokerNodeGroupInfoConnectivityInfoVpcConnectivityClientAuthenticationSasl
    Configuration block for specifying SASL client authentication. See below.
    Tls bool
    Configuration block for specifying TLS client authentication. See below.
    Sasl ClusterBrokerNodeGroupInfoConnectivityInfoVpcConnectivityClientAuthenticationSasl
    Configuration block for specifying SASL client authentication. See below.
    Tls bool
    Configuration block for specifying TLS client authentication. See below.
    sasl ClusterBrokerNodeGroupInfoConnectivityInfoVpcConnectivityClientAuthenticationSasl
    Configuration block for specifying SASL client authentication. See below.
    tls Boolean
    Configuration block for specifying TLS client authentication. See below.
    sasl ClusterBrokerNodeGroupInfoConnectivityInfoVpcConnectivityClientAuthenticationSasl
    Configuration block for specifying SASL client authentication. See below.
    tls boolean
    Configuration block for specifying TLS client authentication. See below.
    sasl ClusterBrokerNodeGroupInfoConnectivityInfoVpcConnectivityClientAuthenticationSasl
    Configuration block for specifying SASL client authentication. See below.
    tls bool
    Configuration block for specifying TLS client authentication. See below.
    sasl Property Map
    Configuration block for specifying SASL client authentication. See below.
    tls Boolean
    Configuration block for specifying TLS client authentication. See below.

    ClusterBrokerNodeGroupInfoConnectivityInfoVpcConnectivityClientAuthenticationSasl, ClusterBrokerNodeGroupInfoConnectivityInfoVpcConnectivityClientAuthenticationSaslArgs

    Iam bool
    Enables IAM client authentication. Defaults to false.
    Scram bool
    Enables SCRAM client authentication via AWS Secrets Manager. Defaults to false.
    Iam bool
    Enables IAM client authentication. Defaults to false.
    Scram bool
    Enables SCRAM client authentication via AWS Secrets Manager. Defaults to false.
    iam Boolean
    Enables IAM client authentication. Defaults to false.
    scram Boolean
    Enables SCRAM client authentication via AWS Secrets Manager. Defaults to false.
    iam boolean
    Enables IAM client authentication. Defaults to false.
    scram boolean
    Enables SCRAM client authentication via AWS Secrets Manager. Defaults to false.
    iam bool
    Enables IAM client authentication. Defaults to false.
    scram bool
    Enables SCRAM client authentication via AWS Secrets Manager. Defaults to false.
    iam Boolean
    Enables IAM client authentication. Defaults to false.
    scram Boolean
    Enables SCRAM client authentication via AWS Secrets Manager. Defaults to false.

    ClusterBrokerNodeGroupInfoStorageInfo, ClusterBrokerNodeGroupInfoStorageInfoArgs

    EbsStorageInfo ClusterBrokerNodeGroupInfoStorageInfoEbsStorageInfo
    A block that contains EBS volume information. See below.
    EbsStorageInfo ClusterBrokerNodeGroupInfoStorageInfoEbsStorageInfo
    A block that contains EBS volume information. See below.
    ebsStorageInfo ClusterBrokerNodeGroupInfoStorageInfoEbsStorageInfo
    A block that contains EBS volume information. See below.
    ebsStorageInfo ClusterBrokerNodeGroupInfoStorageInfoEbsStorageInfo
    A block that contains EBS volume information. See below.
    ebs_storage_info ClusterBrokerNodeGroupInfoStorageInfoEbsStorageInfo
    A block that contains EBS volume information. See below.
    ebsStorageInfo Property Map
    A block that contains EBS volume information. See below.

    ClusterBrokerNodeGroupInfoStorageInfoEbsStorageInfo, ClusterBrokerNodeGroupInfoStorageInfoEbsStorageInfoArgs

    ProvisionedThroughput ClusterBrokerNodeGroupInfoStorageInfoEbsStorageInfoProvisionedThroughput
    A block that contains EBS volume provisioned throughput information. To provision storage throughput, you must choose broker type kafka.m5.4xlarge or larger. See below.
    VolumeSize int
    The size in GiB of the EBS volume for the data drive on each broker node. Minimum value of 1 and maximum value of 16384.
    ProvisionedThroughput ClusterBrokerNodeGroupInfoStorageInfoEbsStorageInfoProvisionedThroughput
    A block that contains EBS volume provisioned throughput information. To provision storage throughput, you must choose broker type kafka.m5.4xlarge or larger. See below.
    VolumeSize int
    The size in GiB of the EBS volume for the data drive on each broker node. Minimum value of 1 and maximum value of 16384.
    provisionedThroughput ClusterBrokerNodeGroupInfoStorageInfoEbsStorageInfoProvisionedThroughput
    A block that contains EBS volume provisioned throughput information. To provision storage throughput, you must choose broker type kafka.m5.4xlarge or larger. See below.
    volumeSize Integer
    The size in GiB of the EBS volume for the data drive on each broker node. Minimum value of 1 and maximum value of 16384.
    provisionedThroughput ClusterBrokerNodeGroupInfoStorageInfoEbsStorageInfoProvisionedThroughput
    A block that contains EBS volume provisioned throughput information. To provision storage throughput, you must choose broker type kafka.m5.4xlarge or larger. See below.
    volumeSize number
    The size in GiB of the EBS volume for the data drive on each broker node. Minimum value of 1 and maximum value of 16384.
    provisioned_throughput ClusterBrokerNodeGroupInfoStorageInfoEbsStorageInfoProvisionedThroughput
    A block that contains EBS volume provisioned throughput information. To provision storage throughput, you must choose broker type kafka.m5.4xlarge or larger. See below.
    volume_size int
    The size in GiB of the EBS volume for the data drive on each broker node. Minimum value of 1 and maximum value of 16384.
    provisionedThroughput Property Map
    A block that contains EBS volume provisioned throughput information. To provision storage throughput, you must choose broker type kafka.m5.4xlarge or larger. See below.
    volumeSize Number
    The size in GiB of the EBS volume for the data drive on each broker node. Minimum value of 1 and maximum value of 16384.

    ClusterBrokerNodeGroupInfoStorageInfoEbsStorageInfoProvisionedThroughput, ClusterBrokerNodeGroupInfoStorageInfoEbsStorageInfoProvisionedThroughputArgs

    Enabled bool
    Controls whether provisioned throughput is enabled or not. Default value: false.
    VolumeThroughput int
    Throughput value of the EBS volumes for the data drive on each kafka broker node in MiB per second. The minimum value is 250. The maximum value varies between broker type. You can refer to the valid values for the maximum volume throughput at the following documentation on throughput bottlenecks
    Enabled bool
    Controls whether provisioned throughput is enabled or not. Default value: false.
    VolumeThroughput int
    Throughput value of the EBS volumes for the data drive on each kafka broker node in MiB per second. The minimum value is 250. The maximum value varies between broker type. You can refer to the valid values for the maximum volume throughput at the following documentation on throughput bottlenecks
    enabled Boolean
    Controls whether provisioned throughput is enabled or not. Default value: false.
    volumeThroughput Integer
    Throughput value of the EBS volumes for the data drive on each kafka broker node in MiB per second. The minimum value is 250. The maximum value varies between broker type. You can refer to the valid values for the maximum volume throughput at the following documentation on throughput bottlenecks
    enabled boolean
    Controls whether provisioned throughput is enabled or not. Default value: false.
    volumeThroughput number
    Throughput value of the EBS volumes for the data drive on each kafka broker node in MiB per second. The minimum value is 250. The maximum value varies between broker type. You can refer to the valid values for the maximum volume throughput at the following documentation on throughput bottlenecks
    enabled bool
    Controls whether provisioned throughput is enabled or not. Default value: false.
    volume_throughput int
    Throughput value of the EBS volumes for the data drive on each kafka broker node in MiB per second. The minimum value is 250. The maximum value varies between broker type. You can refer to the valid values for the maximum volume throughput at the following documentation on throughput bottlenecks
    enabled Boolean
    Controls whether provisioned throughput is enabled or not. Default value: false.
    volumeThroughput Number
    Throughput value of the EBS volumes for the data drive on each kafka broker node in MiB per second. The minimum value is 250. The maximum value varies between broker type. You can refer to the valid values for the maximum volume throughput at the following documentation on throughput bottlenecks

    ClusterClientAuthentication, ClusterClientAuthenticationArgs

    Sasl ClusterClientAuthenticationSasl
    Configuration block for specifying SASL client authentication. See below.
    Tls ClusterClientAuthenticationTls
    Configuration block for specifying TLS client authentication. See below.
    Unauthenticated bool
    Enables unauthenticated access.
    Sasl ClusterClientAuthenticationSasl
    Configuration block for specifying SASL client authentication. See below.
    Tls ClusterClientAuthenticationTls
    Configuration block for specifying TLS client authentication. See below.
    Unauthenticated bool
    Enables unauthenticated access.
    sasl ClusterClientAuthenticationSasl
    Configuration block for specifying SASL client authentication. See below.
    tls ClusterClientAuthenticationTls
    Configuration block for specifying TLS client authentication. See below.
    unauthenticated Boolean
    Enables unauthenticated access.
    sasl ClusterClientAuthenticationSasl
    Configuration block for specifying SASL client authentication. See below.
    tls ClusterClientAuthenticationTls
    Configuration block for specifying TLS client authentication. See below.
    unauthenticated boolean
    Enables unauthenticated access.
    sasl ClusterClientAuthenticationSasl
    Configuration block for specifying SASL client authentication. See below.
    tls ClusterClientAuthenticationTls
    Configuration block for specifying TLS client authentication. See below.
    unauthenticated bool
    Enables unauthenticated access.
    sasl Property Map
    Configuration block for specifying SASL client authentication. See below.
    tls Property Map
    Configuration block for specifying TLS client authentication. See below.
    unauthenticated Boolean
    Enables unauthenticated access.

    ClusterClientAuthenticationSasl, ClusterClientAuthenticationSaslArgs

    Iam bool
    Enables IAM client authentication. Defaults to false.
    Scram bool
    Enables SCRAM client authentication via AWS Secrets Manager. Defaults to false.
    Iam bool
    Enables IAM client authentication. Defaults to false.
    Scram bool
    Enables SCRAM client authentication via AWS Secrets Manager. Defaults to false.
    iam Boolean
    Enables IAM client authentication. Defaults to false.
    scram Boolean
    Enables SCRAM client authentication via AWS Secrets Manager. Defaults to false.
    iam boolean
    Enables IAM client authentication. Defaults to false.
    scram boolean
    Enables SCRAM client authentication via AWS Secrets Manager. Defaults to false.
    iam bool
    Enables IAM client authentication. Defaults to false.
    scram bool
    Enables SCRAM client authentication via AWS Secrets Manager. Defaults to false.
    iam Boolean
    Enables IAM client authentication. Defaults to false.
    scram Boolean
    Enables SCRAM client authentication via AWS Secrets Manager. Defaults to false.

    ClusterClientAuthenticationTls, ClusterClientAuthenticationTlsArgs

    CertificateAuthorityArns List<string>
    List of ACM Certificate Authority Amazon Resource Names (ARNs).
    CertificateAuthorityArns []string
    List of ACM Certificate Authority Amazon Resource Names (ARNs).
    certificateAuthorityArns List<String>
    List of ACM Certificate Authority Amazon Resource Names (ARNs).
    certificateAuthorityArns string[]
    List of ACM Certificate Authority Amazon Resource Names (ARNs).
    certificate_authority_arns Sequence[str]
    List of ACM Certificate Authority Amazon Resource Names (ARNs).
    certificateAuthorityArns List<String>
    List of ACM Certificate Authority Amazon Resource Names (ARNs).

    ClusterConfigurationInfo, ClusterConfigurationInfoArgs

    Arn string
    Amazon Resource Name (ARN) of the MSK Configuration to use in the cluster.
    Revision int
    Revision of the MSK Configuration to use in the cluster.
    Arn string
    Amazon Resource Name (ARN) of the MSK Configuration to use in the cluster.
    Revision int
    Revision of the MSK Configuration to use in the cluster.
    arn String
    Amazon Resource Name (ARN) of the MSK Configuration to use in the cluster.
    revision Integer
    Revision of the MSK Configuration to use in the cluster.
    arn string
    Amazon Resource Name (ARN) of the MSK Configuration to use in the cluster.
    revision number
    Revision of the MSK Configuration to use in the cluster.
    arn str
    Amazon Resource Name (ARN) of the MSK Configuration to use in the cluster.
    revision int
    Revision of the MSK Configuration to use in the cluster.
    arn String
    Amazon Resource Name (ARN) of the MSK Configuration to use in the cluster.
    revision Number
    Revision of the MSK Configuration to use in the cluster.

    ClusterEncryptionInfo, ClusterEncryptionInfoArgs

    EncryptionAtRestKmsKeyArn string
    You may specify a KMS key short ID or ARN (it will always output an ARN) to use for encrypting your data at rest. If no key is specified, an AWS managed KMS ('aws/msk' managed service) key will be used for encrypting the data at rest.
    EncryptionInTransit ClusterEncryptionInfoEncryptionInTransit
    Configuration block to specify encryption in transit. See below.
    EncryptionAtRestKmsKeyArn string
    You may specify a KMS key short ID or ARN (it will always output an ARN) to use for encrypting your data at rest. If no key is specified, an AWS managed KMS ('aws/msk' managed service) key will be used for encrypting the data at rest.
    EncryptionInTransit ClusterEncryptionInfoEncryptionInTransit
    Configuration block to specify encryption in transit. See below.
    encryptionAtRestKmsKeyArn String
    You may specify a KMS key short ID or ARN (it will always output an ARN) to use for encrypting your data at rest. If no key is specified, an AWS managed KMS ('aws/msk' managed service) key will be used for encrypting the data at rest.
    encryptionInTransit ClusterEncryptionInfoEncryptionInTransit
    Configuration block to specify encryption in transit. See below.
    encryptionAtRestKmsKeyArn string
    You may specify a KMS key short ID or ARN (it will always output an ARN) to use for encrypting your data at rest. If no key is specified, an AWS managed KMS ('aws/msk' managed service) key will be used for encrypting the data at rest.
    encryptionInTransit ClusterEncryptionInfoEncryptionInTransit
    Configuration block to specify encryption in transit. See below.
    encryption_at_rest_kms_key_arn str
    You may specify a KMS key short ID or ARN (it will always output an ARN) to use for encrypting your data at rest. If no key is specified, an AWS managed KMS ('aws/msk' managed service) key will be used for encrypting the data at rest.
    encryption_in_transit ClusterEncryptionInfoEncryptionInTransit
    Configuration block to specify encryption in transit. See below.
    encryptionAtRestKmsKeyArn String
    You may specify a KMS key short ID or ARN (it will always output an ARN) to use for encrypting your data at rest. If no key is specified, an AWS managed KMS ('aws/msk' managed service) key will be used for encrypting the data at rest.
    encryptionInTransit Property Map
    Configuration block to specify encryption in transit. See below.

    ClusterEncryptionInfoEncryptionInTransit, ClusterEncryptionInfoEncryptionInTransitArgs

    ClientBroker string
    Encryption setting for data in transit between clients and brokers. Valid values: TLS, TLS_PLAINTEXT, and PLAINTEXT. Default value is TLS.
    InCluster bool
    Whether data communication among broker nodes is encrypted. Default value: true.
    ClientBroker string
    Encryption setting for data in transit between clients and brokers. Valid values: TLS, TLS_PLAINTEXT, and PLAINTEXT. Default value is TLS.
    InCluster bool
    Whether data communication among broker nodes is encrypted. Default value: true.
    clientBroker String
    Encryption setting for data in transit between clients and brokers. Valid values: TLS, TLS_PLAINTEXT, and PLAINTEXT. Default value is TLS.
    inCluster Boolean
    Whether data communication among broker nodes is encrypted. Default value: true.
    clientBroker string
    Encryption setting for data in transit between clients and brokers. Valid values: TLS, TLS_PLAINTEXT, and PLAINTEXT. Default value is TLS.
    inCluster boolean
    Whether data communication among broker nodes is encrypted. Default value: true.
    client_broker str
    Encryption setting for data in transit between clients and brokers. Valid values: TLS, TLS_PLAINTEXT, and PLAINTEXT. Default value is TLS.
    in_cluster bool
    Whether data communication among broker nodes is encrypted. Default value: true.
    clientBroker String
    Encryption setting for data in transit between clients and brokers. Valid values: TLS, TLS_PLAINTEXT, and PLAINTEXT. Default value is TLS.
    inCluster Boolean
    Whether data communication among broker nodes is encrypted. Default value: true.

    ClusterLoggingInfo, ClusterLoggingInfoArgs

    BrokerLogs ClusterLoggingInfoBrokerLogs
    Configuration block for Broker Logs settings for logging info. See below.
    BrokerLogs ClusterLoggingInfoBrokerLogs
    Configuration block for Broker Logs settings for logging info. See below.
    brokerLogs ClusterLoggingInfoBrokerLogs
    Configuration block for Broker Logs settings for logging info. See below.
    brokerLogs ClusterLoggingInfoBrokerLogs
    Configuration block for Broker Logs settings for logging info. See below.
    broker_logs ClusterLoggingInfoBrokerLogs
    Configuration block for Broker Logs settings for logging info. See below.
    brokerLogs Property Map
    Configuration block for Broker Logs settings for logging info. See below.

    ClusterLoggingInfoBrokerLogs, ClusterLoggingInfoBrokerLogsArgs

    ClusterLoggingInfoBrokerLogsCloudwatchLogs, ClusterLoggingInfoBrokerLogsCloudwatchLogsArgs

    Enabled bool
    Controls whether provisioned throughput is enabled or not. Default value: false.
    LogGroup string
    Name of the Cloudwatch Log Group to deliver logs to.
    Enabled bool
    Controls whether provisioned throughput is enabled or not. Default value: false.
    LogGroup string
    Name of the Cloudwatch Log Group to deliver logs to.
    enabled Boolean
    Controls whether provisioned throughput is enabled or not. Default value: false.
    logGroup String
    Name of the Cloudwatch Log Group to deliver logs to.
    enabled boolean
    Controls whether provisioned throughput is enabled or not. Default value: false.
    logGroup string
    Name of the Cloudwatch Log Group to deliver logs to.
    enabled bool
    Controls whether provisioned throughput is enabled or not. Default value: false.
    log_group str
    Name of the Cloudwatch Log Group to deliver logs to.
    enabled Boolean
    Controls whether provisioned throughput is enabled or not. Default value: false.
    logGroup String
    Name of the Cloudwatch Log Group to deliver logs to.

    ClusterLoggingInfoBrokerLogsFirehose, ClusterLoggingInfoBrokerLogsFirehoseArgs

    Enabled bool
    Controls whether provisioned throughput is enabled or not. Default value: false.
    DeliveryStream string
    Name of the Kinesis Data Firehose delivery stream to deliver logs to.
    Enabled bool
    Controls whether provisioned throughput is enabled or not. Default value: false.
    DeliveryStream string
    Name of the Kinesis Data Firehose delivery stream to deliver logs to.
    enabled Boolean
    Controls whether provisioned throughput is enabled or not. Default value: false.
    deliveryStream String
    Name of the Kinesis Data Firehose delivery stream to deliver logs to.
    enabled boolean
    Controls whether provisioned throughput is enabled or not. Default value: false.
    deliveryStream string
    Name of the Kinesis Data Firehose delivery stream to deliver logs to.
    enabled bool
    Controls whether provisioned throughput is enabled or not. Default value: false.
    delivery_stream str
    Name of the Kinesis Data Firehose delivery stream to deliver logs to.
    enabled Boolean
    Controls whether provisioned throughput is enabled or not. Default value: false.
    deliveryStream String
    Name of the Kinesis Data Firehose delivery stream to deliver logs to.

    ClusterLoggingInfoBrokerLogsS3, ClusterLoggingInfoBrokerLogsS3Args

    Enabled bool
    Controls whether provisioned throughput is enabled or not. Default value: false.
    Bucket string
    Name of the S3 bucket to deliver logs to.
    Prefix string
    Prefix to append to the folder name.
    Enabled bool
    Controls whether provisioned throughput is enabled or not. Default value: false.
    Bucket string
    Name of the S3 bucket to deliver logs to.
    Prefix string
    Prefix to append to the folder name.
    enabled Boolean
    Controls whether provisioned throughput is enabled or not. Default value: false.
    bucket String
    Name of the S3 bucket to deliver logs to.
    prefix String
    Prefix to append to the folder name.
    enabled boolean
    Controls whether provisioned throughput is enabled or not. Default value: false.
    bucket string
    Name of the S3 bucket to deliver logs to.
    prefix string
    Prefix to append to the folder name.
    enabled bool
    Controls whether provisioned throughput is enabled or not. Default value: false.
    bucket str
    Name of the S3 bucket to deliver logs to.
    prefix str
    Prefix to append to the folder name.
    enabled Boolean
    Controls whether provisioned throughput is enabled or not. Default value: false.
    bucket String
    Name of the S3 bucket to deliver logs to.
    prefix String
    Prefix to append to the folder name.

    ClusterOpenMonitoring, ClusterOpenMonitoringArgs

    Prometheus ClusterOpenMonitoringPrometheus
    Configuration block for Prometheus settings for open monitoring. See below.
    Prometheus ClusterOpenMonitoringPrometheus
    Configuration block for Prometheus settings for open monitoring. See below.
    prometheus ClusterOpenMonitoringPrometheus
    Configuration block for Prometheus settings for open monitoring. See below.
    prometheus ClusterOpenMonitoringPrometheus
    Configuration block for Prometheus settings for open monitoring. See below.
    prometheus ClusterOpenMonitoringPrometheus
    Configuration block for Prometheus settings for open monitoring. See below.
    prometheus Property Map
    Configuration block for Prometheus settings for open monitoring. See below.

    ClusterOpenMonitoringPrometheus, ClusterOpenMonitoringPrometheusArgs

    JmxExporter ClusterOpenMonitoringPrometheusJmxExporter
    Configuration block for JMX Exporter. See below.
    NodeExporter ClusterOpenMonitoringPrometheusNodeExporter
    Configuration block for Node Exporter. See below.
    JmxExporter ClusterOpenMonitoringPrometheusJmxExporter
    Configuration block for JMX Exporter. See below.
    NodeExporter ClusterOpenMonitoringPrometheusNodeExporter
    Configuration block for Node Exporter. See below.
    jmxExporter ClusterOpenMonitoringPrometheusJmxExporter
    Configuration block for JMX Exporter. See below.
    nodeExporter ClusterOpenMonitoringPrometheusNodeExporter
    Configuration block for Node Exporter. See below.
    jmxExporter ClusterOpenMonitoringPrometheusJmxExporter
    Configuration block for JMX Exporter. See below.
    nodeExporter ClusterOpenMonitoringPrometheusNodeExporter
    Configuration block for Node Exporter. See below.
    jmx_exporter ClusterOpenMonitoringPrometheusJmxExporter
    Configuration block for JMX Exporter. See below.
    node_exporter ClusterOpenMonitoringPrometheusNodeExporter
    Configuration block for Node Exporter. See below.
    jmxExporter Property Map
    Configuration block for JMX Exporter. See below.
    nodeExporter Property Map
    Configuration block for Node Exporter. See below.

    ClusterOpenMonitoringPrometheusJmxExporter, ClusterOpenMonitoringPrometheusJmxExporterArgs

    EnabledInBroker bool
    Indicates whether you want to enable or disable the Node Exporter.
    EnabledInBroker bool
    Indicates whether you want to enable or disable the Node Exporter.
    enabledInBroker Boolean
    Indicates whether you want to enable or disable the Node Exporter.
    enabledInBroker boolean
    Indicates whether you want to enable or disable the Node Exporter.
    enabled_in_broker bool
    Indicates whether you want to enable or disable the Node Exporter.
    enabledInBroker Boolean
    Indicates whether you want to enable or disable the Node Exporter.

    ClusterOpenMonitoringPrometheusNodeExporter, ClusterOpenMonitoringPrometheusNodeExporterArgs

    EnabledInBroker bool
    Indicates whether you want to enable or disable the Node Exporter.
    EnabledInBroker bool
    Indicates whether you want to enable or disable the Node Exporter.
    enabledInBroker Boolean
    Indicates whether you want to enable or disable the Node Exporter.
    enabledInBroker boolean
    Indicates whether you want to enable or disable the Node Exporter.
    enabled_in_broker bool
    Indicates whether you want to enable or disable the Node Exporter.
    enabledInBroker Boolean
    Indicates whether you want to enable or disable the Node Exporter.

    Import

    Using pulumi import, import MSK clusters using the cluster arn. For example:

    $ pulumi import aws:msk/cluster:Cluster example arn:aws:kafka:us-west-2:123456789012:cluster/example/279c0212-d057-4dba-9aa9-1c4e5a25bfc7-3
    

    Package Details

    Repository
    AWS Classic pulumi/pulumi-aws
    License
    Apache-2.0
    Notes
    This Pulumi package is based on the aws Terraform Provider.
    aws logo

    Try AWS Native preview for resources not in the classic version.

    AWS Classic v6.28.1 published on Thursday, Mar 28, 2024 by Pulumi