Managing Access and Authentication

Managing access to event broker services includes:

Controlling who has management access to configure and manage the event broker service.
Controlling which clients can publish and subscribe through the event broker service.

Managing authentication involves configuring how users and clients with access to an event broker service prove their identity to gain access.

Configuring User Access

Administrators manage which user accounts have access to Cluster Manager and event broker services through the PubSub+ Cloud Console with user roles. For more information, see Managing Users, Groups, Roles, and Permissions.

Administrators and Mission Control Managers can elevate the permissions of Mission Control Users for individual event broker services. For more information, see Configuring User Access to Event Broker Services.

To manage event broker services from outside of the Cloud Console using tools such as SEMP and REST APIs, requires the username and password for the event broker service. For more information on obtaining these credentials, see Managing Your Event Broker Service.

Configuring Client Access

To manage which clients can connect to an event broker service and which topics clients can publish and subscribe to, you can assign client usernames to clients or use LDAP authorization groups and associate client profiles and ACL profiles to each client username or authorization group. For more information, see:

Configuring Authentication

PubSub+ Cloud allows microservices, including client applications, to authenticate with your event broker service using these authentication types:

basic authentication (internal database or LDAP)
user authentication through LDAP management access
client certificate authentication (also known as mutual TLS)
OAuth provider authentication.

For more information, see Configuring Authentication to Event Broker Services.

Provide feedback