Select your cookie preferences

We use essential cookies and similar tools that are necessary to provide our site and services. We use performance cookies to collect anonymous statistics, so we can understand how customers use our site and make improvements. Essential cookies cannot be deactivated, but you can choose “Customize” or “Decline” to decline performance cookies.

If you agree, AWS and approved third parties will also use cookies to provide useful site features, remember your preferences, and display relevant content, including relevant advertising. To accept or decline all non-essential cookies, choose “Accept” or “Decline.” To make more detailed choices, choose “Customize.”

Preferences
Contact Us
Feedback
AWS Documentation
Create an AWS Account

Permissions for QuickSight shared folders

PDF
RSS
Focus mode
Permissions for QuickSight shared folders - Amazon QuickSight

Shared folders have three permission levels. To set folder-level permissions for a user or group, see Create and manage membership permissions for QuickSight shared folders.

  • Owners - The folder owner owns everything (folders, analyses, dashboards, datasets, data sources, topics) inside of the folder. They can create, edit, and delete the assets in the folder, modify permissions on the folder and its assets, and delete the folder entirely. The owner role is not supported for restricted shared folders.

  • Contributors - A contributor can create, edit, and delete assets in a folder just like an owner. They can't delete the folder or modify permissions on the folder or on assets where they have contributor access that they inherited from the folder.

  • Viewers - A viewer can only view the assets (folders, dashboards, datasets, data sources, topics) in the folder. A viewer can't edit or share those assets.

The following rules also apply to security for shared folders:

  • QuickSight readers' sharing status for a folder gets shared with the folder. However, a reader gets only read access to folders, and only dashboard access to visuals.

  • AWS security is enforced on every object within a folder. The folder applies the same type of security to the assets of whoever the folder is shared with according to their access level (admin, author, or reader).

  • The top-level folder is the root folder of any subfolders. When a subfolder is shared at any level, the person whom the folder was shared with sees the root folder in the top-level folders view.

  • The folder permission is the permission on the current folder, combined with permissions of all the folders leading to the root folder.

  • A shared asset inherits its permission from the folder. A shared asset is created when an asset that belongs to the folder owner is added to a shared folder.

  • If you own an unrestricted shared folder, you can transfer ownership of the folder to another QuickSight admin.

  • The owner role is not supported for restricted folders. The contributor role is assigned to authors that create and edit assets within the restricted folders. Folder contributors can't manage the permissions of the restricted folder or its assets.

  • The correct IAM permissions are required to update the permissions of a restricted shared folder with the UpdateFolderPermissions API.

To create and manage permissions of a shared folder, see Create and manage membership permissions for QuickSight shared folders.

Related resources

Amazon QuickSight 
Technical support 
Amazon QuickSight user forum 

Related resources

Amazon QuickSight 
Technical support 
Amazon QuickSight user forum 
PrivacySite termsCookie preferences
© 2025, Amazon Web Services, Inc. or its affiliates. All rights reserved.