Get Hands-on with Amazon EKS - Workshop Event Series

Whether you're taking your first steps with Kubernetes or you're an experienced practitioner looking to sharpen your skills, our Amazon EKS workshop series delivers practical, real-world experience that moves you forward. Learn directly from AWS solutions architects and EKS specialists through hands-on sessions designed to build your confidence with Kubernetes. Register now and start building with Amazon EKS!

Datazone IAM permission only for schema

i wnat to create a role that can only write descriptions for tables/columns in the project and edit/add meta data. what permissions should i give?

Topics: Security, Identity, & Compliance
Tags: IAM Policies Amazon DataZone
Language: English

rePost-User-6508055

asked 2 years ago245 views

1 Answer

Newest
Most votes
Most comments

Are these answers helpful? Upvote the correct answer to help the community benefit from your knowledge.

To create a role that can write descriptions for tables and columns, as well as edit and add metadata in a project, you should assign the following permissions: glue:UpdateTable, glue:UpdateColumnStatisticsForTable, glue:PutTable, glue:PutColumnStatisticsForTable, and glue:UpdateDatabase. These permissions allow the role to update and manage table and column descriptions, and handle metadata tasks within the AWS Glue Data Catalog. Additionally, to ensure the role has access to the necessary resources, include the glue:GetTable, glue:GetTables, and glue:GetDatabase permissions for read operations. This setup ensures the role can perform all required metadata operations without overextending its privileges.

Varunprakash Shanmugam

answered 2 years ago

Relevant content

IAM role that have permission to unload only one schema in redshift
rePost-User-7055275
asked 3 years ago
DataZone - scope of permissions
ksazon
asked 3 years ago
What permissions to give to allow creating roles & EKS cluster?
zach
asked 8 months ago
Need to add ecs:DescribeServices permission to IAM role meta-ordinals-code-deploy but can't edit
Accepted Answer
rePost-User-8824616
asked 3 years ago
How can I grant permissions to newly created objects in Amazon Redshift?
AWS OFFICIALUpdated a year ago
What are the minimum permissions that I need for Amazon SageMaker?
AWS OFFICIALUpdated 2 years ago
What's the difference between Lambda function execution role permissions and invocation permissions?
AWS OFFICIALUpdated a year ago
Why can IAM users use Athena to access my Data Catalog resources even after I restricted their permissions in Lake Formation?
AWS OFFICIALUpdated a year ago
Creating Metadata forms in Datazone/SageMaker Unified Studio using create-form-type CLI command
EXPERT
Snehali
published 10 months ago
Cross account IAM permission set-up for running a Redshift COPY Command from Amazon S3 bucket in one AWS account to Amazon Redshift in another AWS account.
EXPERT
Washim Nawaz
published a year ago

Datazone IAM permission only for schema

Add your answer

Relevant content