AWS re:Post을(를) 사용하면 다음에 동의하게 됩니다. AWS re:Post 이용 약관
AWS re:Postre:Post

Crawling DynamoDB table from another account with AWS Glue Crawler

0

I'm trying to figure out how to crawl a DynamoDB in another account with AWS Glue. Right now it seems like Glue can only crawl DynamoDB's in the current user's account. I've tried setting up several IAM roles and policies, and seems like they all don't work. Can anyone confirm if Glue Crawler supports accessing external DynamoDB tables?

주제
보안, 신원 및 규정 준수분석데이터베이스
태그
AWS 자격 증명 및 액세스 관리AWS Glue아마존 DynamoDB
언어
English
rePost-User-6209720
질문됨 일 년 전387회 조회
1개 답변
0

AWS Glue Crawlers do support cross-account crawling. Do you know if your analytics components are managed by AWS Lake Formation? If so, and assuming you've set up the proper cross-account permissions it could be that the permissions are missing Lake Formation. Check to see if the Glue crawlers have the right permissions within the Lake Formation permission management as well.

profile pictureAWS
전문가
pechung
답변함 일 년 전
  • rePost-User-6209720
    일 년 전

    Thanks for replying! After looking into AWS Lake Formation, I had two questions.

    1. Seems like all the examples are about S3, and Lake Formation is optimized for S3. Does approach applies to DynamoDB?
    2. As mentioned in https://aws.amazon.com/blogs/big-data/aws-glue-crawlers-support-cross-account-crawling-to-support-data-mesh-architecture/, it seems like for Account B to crawl data from Account A's data stores, the crawler needs to be created and run in Account A, and the result can be shared with Account B. Is there a way to build a centralized service in which the crawler is created within Account?
  • Gonzalo Herreros 전문가
    일 년 전

    The idea is the same for both s3 and DDB, one account provides the tables (maybe by crawling) and then they are shared. With s3 you could bypass that but it's not ideal.

로그인하지 않았습니다. 로그인해야 답변을 게시할 수 있습니다.

좋은 답변은 질문에 명확하게 답하고 건설적인 피드백을 제공하며 질문자의 전문적인 성장을 장려합니다.

질문 답변하기에 대한 가이드라인

관련 콘텐츠