Insufficient Permissions to execute query

Hello,

Greetings of the day.

Thank you for reaching out with your concern in AWS re:Post.

I understand that you received insufficient permissions error while executing a query in lake formation. This error might occur if user/role executing the query may not have sufficient Lake Formation permissions.

To begin with, I would recommend checking the permissions attached to the IAM role/user. Please ensure that the role/user has following permissions [1]-

• lakeformation:GrantPermissions
• lakeformation:BatchGrantPermissions
• lakeformation:RevokePermissions
• lakeformation:BatchRevokePermissions
• glue:GetTable or glue:GetDatabase for a table or database that you're granting permissions on with the named resource method

Also, you can use the named resource method to grant Lake Formation permissions on specific Data Catalog databases and tables. [2]

In order to debug further, if you're still having issues, you can use AWS CloudTrail to see the error logs and proceed accordingly.

Also, you can refer the following documentations which might help in resolving the errors-

https://docs.aws.amazon.com/lake-formation/latest/dg/troubleshooting.html https://repost.aws/knowledge-center/glue-insufficient-lakeformation-permissions
https://docs.aws.amazon.com/lake-formation/latest/dg/granting-database-permissions.html

I hope the above information is helpful to you.

Thank you and have a great day ahead.

References:-

[1]- https://docs.aws.amazon.com/lake-formation/latest/dg/required-permissions-for-grant.html

[2]- https://docs.aws.amazon.com/lake-formation/latest/dg/granting-database-permissions.html