- Neueste
- Die meisten Stimmen
- Die meisten Kommentare
Hello, currently the IAM policies that Neptune supports, allow access to the entire database and do not allow fine grained access control where a given user can only read certain graph elements based on a label or property key/predicate name. We are definitely interested in use cases for this level of support. At the moment you will need to manage this within your application.
According to the documentation, fine-grain access control is not support at the database/IAM level: IAM Policy Limitations
I know this question is a couple years old, but adding this answer as it appears high on searches for this topic. The free AWS Skill Builder Course "Data Modeling for Amazon Neptune" discusses multi-tenancy strategies that work for most ISV customers in the "Advanced Modeling Considerations" section.
Relevanter Inhalt
- AWS OFFICIALAktualisiert vor 3 Jahren
We desperately need this feature. Implementing ACLs at the application layer is very risky.