Step 5: Grant data location permissions - Amazon Lake Formation
Services or capabilities described in Amazon Web Services documentation might vary by Region. To see the differences applicable to the China Regions, see Getting Started with Amazon Web Services in China (PDF).

Step 5: Grant data location permissions

Principals must have data location permissions on a data lake location to create Data Catalog tables or databases that point to that location. You must grant data location permissions to the IAM role for workflows so that the workflow can write to the data ingestion destination.

  1. On the Lake Formation console, in the navigation pane, under Permissions, choose Data locations.

  2. Choose Grant, and in the Grant permissions dialog box, do the following:

    1. For IAM user and roles, choose LakeFormationWorkflowRole.

    2. For Storage locations, choose your <yourName>-datalake-tutorial bucket.

  3. Choose Grant.

For more information about data location permissions, see Underlying data access control.