AWS Lake Formation
Developer Guide

Upgrading AWS Glue Data Permissions to the AWS Lake Formation Model

AWS Lake Formation permissions enable fine-grained access control for data in your data lake. You can use the Lake Formation permissions model to manage your existing AWS Glue Data Catalog objects and data locations in Amazon Simple Storage Service (Amazon S3).

The Lake Formation permissions model uses coarse-grained AWS Identity and Access Management (IAM) permissions for API service access. It restricts the data that your users and those services can access via Lake Formation functionality. By comparison, the AWS Glue model grants data access via fine-grained access control IAM permissions. To make the switch, follow the steps in this guide.

For more information, see Lake Formation Access Control Overview.