AWS Data Pipeline
Developer Guide (API Version 2012-10-29)

The AWS Documentation website is getting a new look!
Try it now and let us know what you think. Switch to the new look >>

You can return to the original look by selecting English in the language selector above.

Controlling Access to Pipelines and Resources

Your security credentials identify you to services in AWS and grant you unlimited use of your AWS resources, such as your pipelines. You can use features of AWS Data Pipeline and AWS Identity and Access Management (IAM) to allow AWS Data Pipeline and other users to access your AWS Data Pipeline resources without sharing your security credentials.

Organizations can share access to pipelines so that the individuals in that organization can develop and maintain them collaboratively. However, for example, it might be necessary to do the following:

  • Control which IAM users can access specific pipelines

  • Protect a production pipeline from being edited by mistake

  • Allow an auditor to have read-only access to pipelines, but prevent them from making changes

AWS Data Pipeline is integrated with AWS Identity and Access Management (IAM), which offers a wide range of features:

  • Create users and groups in your AWS account.

  • Easily share your AWS resources between the users in your AWS account.

  • Assign unique security credentials to each user.

  • Control each user's access to services and resources.

  • Get a single bill for all users in your AWS account.

By using IAM with AWS Data Pipeline, you can control whether users in your organization can perform a task using specific API actions and whether they can use specific AWS resources. You can use IAM policies based on pipeline tags and worker groups to share your pipelines with other users and control the level of access they have.