Accessing and viewing shared Data Catalog tables and databases
For the data lake administrator and for principals who have been granted permissions, resources that are shared with your Amazon account appear in the Data Catalog as if they were resources in your account. The console displays the account that owns the resource.
You can view resources that are shared with your account by using the Lake Formation console. You can also use the Amazon Resource Access Manager (Amazon RAM) console to view both resources that are shared with your account and resources that you've shared with other Amazon accounts by using the named resource method.
Important
When someone uses the named resource method to grant cross-account permissions on a Data Catalog resource to your account or Amazon organization, Lake Formation uses the Amazon Resource Access Manager (Amazon RAM) service to share the resource. If your account is in the same Amazon organization as the granting account, the shared resource is available to you immediately.
However, if your account is not in the same organization, Amazon RAM sends an invitation to your account to accept or reject the resource share. Then, to make the shared resource available, the data lake administrator in your account must use the Amazon RAM console or CLI to accept the invitation.
The Lake Formation console displays an alert if there is an Amazon RAM resource share invitation waiting to be accepted. Only users authorized to view Amazon RAM invitations receive the alert.
See Also:
-
Sharing Data Catalog tables and databases across Amazon Accounts
-
Metadata access control (for information about the named resource method versus the LF-TBAC method for sharing resources.)