Posted On: Oct 2, 2020

AWS Lake Formation now supports Active Directory and Security Assertion Markup Language (SAML) identity providers such as OKTA and Auth0 for Amazon Athena. You can now easily manage data access for Amazon Athena users with fine grained privileges using existing identity management tools.

As organizations build data lakes to democratize data, managing a large number of end users and their permissions can be cumbersome and time consuming. With SAML support for Amazon Athena, data lake administrators can now easily manage a large number of users by provisioning their identities, managing ongoing user access with fine grained privileges, and de-activating users as needed. All of these can be done by creating roles in Active Directory or your identity provider and using SAML assertions to provide access to the users. 

Active Directory and SAML identity provider support for Amazon Athena is now available in the same AWS regions as AWS Lake Formation. To learn more, see the Data Lakes and Analytics on AWS page and visit the AWS Lake Formation Developer Guide.