@BurcuG93 To connect Pega to an external Kafka instance using Kerberos GSSAPI authentication, follow these steps. First, ensure that your Pega environment has the necessary Kafka client libraries that support Kerberos. Place your keytab file in a secure location accessible by the Pega application. Next, create a JAAS (Java Authentication and Authorization Service) configuration file specifying the principal and keytab details. Configure the Pega application's JVM to use this JAAS file by setting the java.security.auth.login.config system property. Update your Kafka consumer and producer configurations in Pega to use GSSAPI as the security protocol and specify the appropriate SASL mechanism. Ensure that the Kafka broker’s Kerberos settings are correctly referenced in your Pega configuration. Test the connection to verify that authentication succeeds. If Pega still does not natively support Kerberos authentication, consider using a middleware or proxy that handles Kerberos and communicates with Pega using supported authentication methods.