AWS Tutorials - AWS Lake Formation - Tag Based Access Control

Рет қаралды 5,279

Күн бұрын

Пікірлер: 19

@MrRokkit 3 ай бұрын

22:50 *Q: Why not IAM policies instead of TF-Tags?* Did AWS reinvent the wheel here or is there something I'm missing? I get why it could be tedious to maintain users/roles to tables/columns directly, but doesn't IAM Policies solve the same problem?

@andryborodin4869 3 жыл бұрын

Thank you for your time! That was very helpful.

@AWSTutorialsOnline 3 жыл бұрын

You're very welcome!

@avinashdby 3 жыл бұрын

What could be possible reasons if TBAC is not working correctly?

@AWSTutorialsOnline 3 жыл бұрын

Apologies for the late response due to my summer break. Please check if glue database is configure to use only lake formation based security. if It is supports backward compatibility for IAM Role based access then TBAC might not work.

@sanjeettkumar4746 2 жыл бұрын

Is row level access can be applied using tag based?

@shayankabasi160 3 жыл бұрын

thanks for the great video, could you please create some video how to manage PI info in aws data lake

@AWSTutorialsOnline 3 жыл бұрын

Apologies for the late response due to my summer break. Do you want to identify PI information or want to secure it like encrypt / mask?

@shayankabasi160 3 жыл бұрын

@@AWSTutorialsOnline I want to mask the encrypt / mask information so that when user will query it they will be able to see the no - PI columns

@shayankabasi160 3 жыл бұрын

@@AWSTutorialsOnline also there is one more use case only a single user group will be able to see the PI columns but the other user group won't be able to see it. thanks

@nileshkumbhar5961 3 жыл бұрын

thanks for the demo

@AWSTutorialsOnline 3 жыл бұрын

Welcome

@chatchaikomrangded960 3 жыл бұрын

Good one !

@AWSTutorialsOnline 3 жыл бұрын

Thanks for listening

@keepseeconnected2968 3 жыл бұрын

this is good, but i'm looking for Tag based control for IAM role logged as CD roles to segregate access users using same role

@AWSTutorialsOnline 3 жыл бұрын

Apologies for the late response due to my summer break. Can you please elaborate the use case?

@labcodePython 2 жыл бұрын

Is there any way to combine the tags with row access? as I would like for example to create a user to access dojodb.custumers only where country is USA

@shaktisingh-lu3dm 5 ай бұрын

Even I am also facing the same challenge. Not sure how to create row based filter when using tag based access control

@labcodePython 5 ай бұрын

@@shaktisingh-lu3dm you cannot limit that on LF level.