Step 1: Provision your resources
This section shows you how to set up the AWS resources using an AWS CloudFormation template.
To create your resources using AWS CloudFormation template
Sign into the AWS CloudFormation console at https://console.aws.amazon.com/cloudformation
as an IAM administrator in the US East (N. Virginia) Region. Choose Launch Stack
. Choose Next on the Create stack screen.
Enter a Stack name.
Choose Next.
On the next page, choose Next.
Review the details on the final page and select I acknowledge that AWS CloudFormation might create IAM resources.
Choose Create.
The stack creation can take up to two minutes.
Launching the cloud formation stack creates the following resources:
-
lf-otf-datalake-123456789012 – Amazon S3 bucket to store data
Note
The account id appended to the Amazon S3 bucket name is replaced with your account id.
-
lf-otf-tutorial-123456789012 – Amazon S3 bucket to store query results and AWS Glue job scripts
lficebergdb – AWS Glue Iceberg database
lfhudidb – AWS Glue Hudi database
-
lfdeltadb – AWS Glue Delta database
native-iceberg-create – AWS Glue job that creates an Iceberg table in the Data Catalog
native-hudi-create – AWS Glue job that creates a Hudi table in the Data Catalog
-
native-delta-create – AWS Glue job that creates a Delta table in the Data Catalog
LF-OTF-GlueServiceRole – IAM role that you pass to AWS Glue to run the jobs. This role has the required policies attached to access the resources like Data Catalog, Amazon S3 bucket etc.
LF-OTF-RegisterRole – IAM role to register the Amazon S3 location with Lake Formation. This role has
LF-Data-Lake-Storage-Policy
attached to the role.lf-consumer-analystuser – IAM user to query the data using Athena
-
lf-consumer-analystuser-credentials – Password for the data analyst user stored in AWS Secrets Manager
After the stack creations is complete, navigate to the output tab and note down the values for:
AthenaQueryResultLocation – Amazon S3 location for Athena query output
BusinessAnalystUserCredentials – Password for the data analyst user
To retrieve the password value:
Choose the
lf-consumer-analystuser-credentials
value by navigating to the Secrets Manager console.In the Secret value section, choose Retrieve secret value.
Note down the secret value for the password.