Step 5: Grant Data Location Permissions - AWS Lake Formation

Step 5: Grant Data Location Permissions

Principals must have data location permissions on a data lake location to create Data Catalog tables or databases that point to that location. You must grant data location permissions to the IAM role for workflows so that the workflow can write to the data ingestion destination.

  1. On the Lake Formation console, in the navigation pane, under Permissions, choose Data locations.

  2. Choose Grant, and in the Grant permissions dialog box, do the following:

    1. For IAM user and roles, choose LakeFormationWorkflowRole.

    2. For Storage locations, choose your <yourName>-datalake-tutorial bucket.

  3. Choose Grant.

For more information about data location permissions, see Underlying Data Access Control.