Role-based Access Control (RBAC) in Confluent Cloud

Confluent Cloud role-based access control (RBAC) lets you control access to an organization, environment, cluster, or granular Kafka resources (topics, consumer groups, and transactional IDs), Schema Registry resources, and ksqlDB resources based on predefined roles and access permissions. Use RBAC to protect your Confluent Cloud resources and data by authorizing and restricting access to principals and by delegating access authorization to the appropriate business units and teams in your organization.

The following concepts are important to understand before using RBAC:

• Organizations
• Environments
• User accounts
• Service accounts

• Networks

Related content

• To learn about RBAC, RBAC roles, and considerations to keep in mind when using RBAC in Confluent Cloud, see the RBAC and ACL module of the free Confluent Cloud Security course .
• For a summary list and links to specifics on how to use RBAC with each component, see RBAC and resources per component.