Browse Confluent Certification Guides

Confluent CCAAK Guide: Confluent Certified Administrator for Apache Kafka

Confluent CCAAK exam guide covering Kafka cluster durability, configuration, security, monitoring, and operations decisions.

This guide targets the current Confluent Certified Administrator for Apache Kafka (CCAAK) exam. As of April 13, 2026, Confluent’s live certification page still described CCAAK as the certification for professionals who manage and maintain Kafka cluster environments, validating the skills needed to configure, deploy, monitor, and support Apache Kafka clusters. The same public page also still said Confluent certification exams are 90 minute proctored exams, that question types vary across multiple-choice, matching, and list order, that all exams are in English, and that the credential expires after two years.

ISR: In-sync replicas, the Kafka replicas currently caught up enough to participate safely in acknowledged writes.

Controller: Kafka broker role responsible for cluster metadata leadership and partition or broker state changes.

Current exam snapshot

Item Current Confluent signal
Official exam name Confluent Certified Administrator for Apache Kafka
Exam code CCAAK
Public role framing manage and maintain Kafka cluster environments
Current exam style signal 90 minute proctored exam
Question types multiple-choice, matching, list order
Language English
Certification validity 2 years
Guide model 5 chapters -> 10 section lessons

What CCAAK is really testing

CCAAK is not a memorization exam for broker settings. Confluent is testing whether you can keep Kafka durable, reachable, observable, and safe to operate. Strong candidates consistently do four things:

  • protect data safety before chasing throughput
  • separate broker-level behavior from topic-level behavior and from client-side symptoms
  • choose the lowest-risk operational change that still restores health
  • understand when a problem is really about durability, security, networking, or maintenance sequencing

Confluent’s public certification page does not publish a weighted domain table for CCAAK, so this guide organizes the live role scope into five practical chapters that match what the public exam description says administrators must do: configure, deploy, monitor, support, and maintain Kafka clusters.

The exam habit that usually wins

Read CCAAK stems in this order:

  1. decide whether the issue is really durability, configuration, security/connectivity, monitoring, or maintenance
  2. identify the failing boundary before you change anything: broker role, listener path, write-safety setting, consumer path, or surrounding platform component
  3. choose the smallest move that restores health without weakening acknowledged-write guarantees
  4. prefer the answer that preserves rollback options, least privilege, and cluster stability

How to use this guide well

    flowchart LR
	  S["Study Plan"] --> D["5 admin chapters"]
	  D --> L["10 scenario-first lessons"]
	  L --> C["Cheat Sheet and Glossary"]
	  C --> M["Mixed incident review"]
	  M --> R["Resources and final fact check"]

Use the guide in this order:

  1. start with the study plan if you need pacing
  2. work the chapter router pages before drilling the lesson pages
  3. use the lesson pages as the main learning units, not the appendices alone
  4. work through the sample questions to practice replication, listener, security, monitoring, and maintenance prompts with full explanations
  5. keep the cheat sheet and glossary beside mixed review sessions
  6. use the faq and resources when you need current Confluent facts or primary Kafka docs

Coverage map for the current guide

Chapter Lesson count Focus
1. Architecture & Durability 2 brokers, controllers, partitions, replication, ISR, acks, and write safety
2. Config 2 listeners, storage, broker defaults, partitions, retention, compaction, and quotas
3. Security & Connectivity 2 TLS, SASL, ACLs, least privilege, listener maps, and client or inter-broker paths
4. Monitoring & Troubleshooting 2 URP, offline partitions, controller churn, lag, resource pressure, and evidence-first diagnosis
5. Maintenance & Platform 2 rolling restarts, upgrades, partition reassignment, and operational awareness of Connect, Schema Registry, and Control Center

What strong answers usually do

  • start from durability and recovery behavior before making tuning changes
  • distinguish cluster-wide settings from topic-level settings and from client-side behavior
  • protect operational safety during config changes, maintenance, and incident handling
  • reason from replication, leader election, and lag behavior instead of memorizing one-off commands

What weak answers usually do

  • treat replication factor alone as the whole durability story
  • blame ACLs or consumers before checking advertised endpoints and transport paths
  • fix throughput complaints by weakening guarantees first
  • bundle upgrades, config changes, and reassignment into one risky maintenance step
  • confuse Kafka core admin symptoms with Connect, Schema Registry, or Control Center boundaries

If two answers both sound right

Use these tie-breakers:

If the close answers differ on… Lean toward…
faster change vs safer change the answer that preserves reversibility and health checks
more throughput vs stronger durability the answer that protects acknowledged writes first
broker fix vs client fix the answer whose symptom boundary actually matches the problem
security convenience vs explicit control the answer with the cleaner least-privilege boundary

Use this exam guide in order

  • Start with the study plan if you want a structured review sequence.
  • Use the cheat sheet for admin tables, durability rules, and troubleshooting decisions.
  • Keep the glossary open when broker, replica, and monitoring terms begin to blur together.
  • Use the FAQ for exam expectations and role-fit questions.
  • Use the resources page when you need official certification material and primary Kafka references.

In this section

Revised on Sunday, May 10, 2026
CCDAK
CCAC