AWS::EMRContainers::SecurityConfiguration LakeFormationConfiguration

AWS Lake Formation related configuration inputs for the security configuration.

Syntax

To declare this entity in your CloudFormation template, use the following syntax:

JSON


{
  "AuthorizedSessionTagValue" : String,
  "QueryAccessControlEnabled" : Boolean,
  "QueryEngineRoleArn" : String,
  "SecureNamespaceInfo" : SecureNamespaceInfo
}

YAML


  AuthorizedSessionTagValue: String
  QueryAccessControlEnabled: Boolean
  QueryEngineRoleArn: String
  SecureNamespaceInfo: 
    SecureNamespaceInfo

Properties

AuthorizedSessionTagValue

The session tag to authorize Amazon EMR on EKS for API calls to AWS Lake Formation.

Required: No

Type: String

Minimum: 1

Maximum: 256

Update requires: Replacement

QueryAccessControlEnabled

Property description not available.

Required: No

Type: Boolean

Update requires: Replacement

QueryEngineRoleArn

The query engine IAM role ARN that is tied to the secure Spark job. The QueryEngine role assumes the JobExecutionRole to execute all the Lake Formation calls.

Required: No

Type: String

Pattern: ^arn:(aws|aws-us-gov|aws-cn|aws-iso|aws-iso-b):iam::\d{12}:role/.+$

Update requires: Replacement

SecureNamespaceInfo

The namespace input of the system job.

Required: No

Type: SecureNamespaceInfo

Update requires: Replacement

Warning Javascript is disabled or is unavailable in your browser.

To use the Amazon Web Services Documentation, Javascript must be enabled. Please refer to your browser's Help pages for instructions.

Document Conventions

InTransitEncryptionConfiguration

LocalDiskEncryptionConfiguration