Step 7: Grant Data Permissions - AWS Lake Formation

Step 7: Grant Data Permissions

You must grant permissions to create metadata tables in the Data Catalog. Because the workflow will run with the role LakeFormationWorkflowRole, you must grant these permissions to the role.

  1. In the navigation pane, under Permissions, choose Data permissions.

  2. Choose Grant, and in the Grant permissions dialog box, make these selections:

    1. For IAM user and roles, choose LakeFormationWorkflowRole.

    2. For Database, choose the database that you created previously, lakeformation_cloudtrail.

    3. For Database permissions, select Create table, Alter, and Drop, and clear Super if it is selected.

  3. Choose Grant.

For more information about granting Lake Formation permissions, see Security and Access Control to Metadata and Data in Lake Formation.