Connection error from QuickSight to Athena under Lake Formation environment

0

I encounter the error when I try to create a new Athena dataset on QuickSight (click on [Validate connection] button);

  • Error Code: ACCESS_DENIED_TO_RESULT_STAGING_AREA
  • Error Message: [Simba]AthenaJDBC An error has been thrown from the AWS Athena client. Access denied when writing to location: s3://<Athena-query-result-bucket-name>/xxxx [Execution ID: xxxxx]

Environment:

  • there're 2 s3 buckets; one is "s3://<Source-data-bucket-name>" for query target, and another one is "s3://<Athena-query-result-bucket-name>" for Athena query workgroup.
  • Using Lake Formation, and both buckets are registered as datalake location.
  • After create QuickSight account, I allow access to 2 s3 buckets and Athena via QuickSight account management
  • On Lake Formation console, I did grant;
    • QuickSight execution role (aws-quicksight-service-role-v0) access to 2 s3 buckets
    • QuickSight Group ARN (arn:aws:quicksight:region:accountId:group/default/groupName) access to the raw data access bucket

What else should I do to make enable to create Athena data set on QuickSight console? Thank you for your help.

AWS
posta un anno fa182 visualizzazioni
Nessuna risposta

Accesso non effettuato. Accedi per postare una risposta.

Una buona risposta soddisfa chiaramente la domanda, fornisce un feedback costruttivo e incoraggia la crescita professionale del richiedente.

Linee guida per rispondere alle domande