Step 10: Grant SELECT on the tables

You must grant the SELECT permission on the new Data Catalog tables in AWS Lake Formation so that the data analyst can query the data that the tables point to.

Note

A workflow automatically grants the SELECT permission on the tables that it creates to the user who ran it. Because the data lake administrator ran this workflow, you must grant SELECT to the data analyst.

On the Lake Formation console, in the navigation pane, under Permissions, choose Data lake permissions.
Choose Grant, and in the Grant data permissions dialog box, do the following:
1. Under Principals, for IAM user and roles, choose datalake_user.
2. Under LF-Tags or catalog resources, choose Named data catalog resources.
3. For Databases, choose lakeformation_tutorial.
  
  The Tables list populates.
4. For Tables, choose one or more tables from your data source.
5. Under Table and column permissions, choose Select.
Choose Grant.

The next step is performed as the data analyst.

Warning Javascript is disabled or is unavailable in your browser.

To use the Amazon Web Services Documentation, Javascript must be enabled. Please refer to your browser's Help pages for instructions.

Document Conventions

Step 9: Run the workflow

Step 11: Query the data lake using Amazon Athena