Automation 360

Connect action in the Kafka package

Download as PDF

Connect action in the Kafka package

Download as PDF

Updated: 2026/05/03

Connect action in the Kafka package

The Connect action in the Kafka package enables you to authenticate with an Apache Kafka broker using supported security protocols and establish a named session that subsequent Kafka actions can use.

Prerequisites

Before you begin, ensure the following requirements are met:

The Kafka broker bootstrap server address is available in the host:port format. See Kafka: Quick Start.
Authentication credentials are prepared based on the selected security protocol:
- SASL Plaintext or SASL SSL with PLAIN or SCRAM: Username and password stored as Automation 360 credentials. See Kafka: Authentication using SASL.
- SASL SSL: A truststore file (.jks or .p12) accessible on the Bot Agent host, with truststore password stored as a credential. See Kafka: Authentication using SASL.
- SSL: Truststore and keystore files accessible on the Bot Agent host. See Kafka: Encryption and Authentication using SSL.
See Kafka: Security Overview
The Bot Agent host can reach the Kafka broker on the configured port (default 9092 for Plaintext, 9093 for SSL).

Use the Connect action to open an authenticated session with a Apache Kafka broker. You must call the Connect action before any other Kafka action in your workflow. Always pair this action with a Disconnect action at the end of your workflow to release the broker resources.

Procedure

Add the Connect action from the Kafka package.
Enter the broker address in the Bootstrap servers field.
Enter one or more broker addresses in the host:port format, separating multiple addresses with commas. For example, broker1.example.com:9092, broker2.example.com:9092.

Select the security protocol from the Security protocol field using one of the following options:

The default value is Plaintext.


Option	Description
Plaintext	Use this option for development or internal networks without encryption or authentication.
SASL Plaintext	Select one of the following SASL mechanisms: PLAIN SCRAM_SHA_256 SCRAM_SHA_512 The default option selected is PLAIN. Specify the username. You can select Credential to use a value from the Credential Vault, Variable to use a credential variable, or Insecure string to manually enter a variable. Specify the password. You can select Credential to use a value from the Credential Vault, Variable to use a credential variable, or Insecure string to manually enter a variable.
SASL SSL	Select one of the following SASL mechanisms: PLAIN SCRAM_SHA_256 SCRAM_SHA_512 The default option selected is PLAIN. Specify the username. You can select Credential to use a value from the Credential Vault, Variable to use a credential variable, or Insecure string to manually enter a variable. Specify the password. You can select Credential to use a value from the Credential Vault, Variable to use a credential variable, or Insecure string to manually enter a variable. Specify the path to the truststore file. Select one of the following options to specify the location of your file: Variable: Enables you to specify the file variable that contains the location of the file. Control Room file: Enables you to select the file that is available in a folder in the Control Room. Desktop file: Enables you to select the file that is available on your device. Specify the truststore password. You can select Credential to use a value from the Credential Vault, Variable to use a credential variable, or Insecure string to manually enter a variable.
SSL	Specify the path to the truststore file. Select one of the following options to specify the location of your file: Variable: Enables you to specify the file variable that contains the location of the file. Control Room file: Enables you to select the file that is available in a folder in the Control Room. Desktop file: Enables you to select the file that is available on your device. Specify the truststore password. You can select Credential to use a value from the Credential Vault, Variable to use a credential variable, or Insecure string to manually enter a variable. Specify the path to the keystore file. Select one of the following options to specify the location of your file: Variable: Enables you to specify the file variable that contains the location of the file. Control Room file: Enables you to select the file that is available in a folder in the Control Room. Desktop file: Enables you to select the file that is available on your device. Specify the keystore password. You can select Credential to use a value from the Credential Vault, Variable to use a credential variable, or Insecure string to manually enter a variable. (Optional) Specify the key password. You can select Credential to use a value from the Credential Vault, Variable to use a credential variable, or Insecure string to manually enter a variable.

Specify how the Kafka session needs to be stored:
- Local session: Specify a session name that you can use only in the current bot.
- Global session: Specify a session name that you can use across multiple automations, such as parent and child automations.
  Note: The parent and child automations should have the same package version.
- Variable: Specify a session variable that you can use to share that session with other child automations.
The action returns a session object representing the active broker connection. Pass this variable to all subsequent Kafka actions in your automations. The default session name is Default.