Granting data lake permissions using the named resource method - Amazon Lake Formation
Services or capabilities described in Amazon Web Services documentation might vary by Region. To see the differences applicable to the China Regions, see Getting Started with Amazon Web Services in China (PDF).

Granting data lake permissions using the named resource method

The named Data Catalog resource method is a way of granting permissions to Amazon Glue Data Catalog resources, such as databases, tables, columns, and views, using a centralized approach. It allows you to define resource-based policies that control access to specific resources within your data lake.

When you use the named resource method to grant permissions, you can specify the resource type and the permissions that you want to grant or revoke for that resource. You can also revoke the permission later if needed, thereby removing the permissions from the associated resources.

You can grant permissions by using the Amazon Lake Formation console, APIs, or the Amazon Command Line Interface (Amazon CLI).