AWS AmazonS3 documentation change
Summary
Clarified Lake Formation integration requirements for table permissions
Security assessment
Refines documentation about access control mechanisms (Lake Formation permissions) but does not resolve a security issue.
Diff
diff --git a/AmazonS3/latest/userguide/grant-permissions-tables.md b/AmazonS3/latest/userguide/grant-permissions-tables.md index 03d38a46f..3e5af34b7 100644 --- a//AmazonS3/latest/userguide/grant-permissions-tables.md +++ b//AmazonS3/latest/userguide/grant-permissions-tables.md @@ -9 +9 @@ Granting Lake Formation permission on a table or database -After your table buckets are integrated with the AWS analytics services, Lake Formation manages access to your tables and requires that each IAM principal (user or role) be authorized to perform actions them. Lake Formation uses its own permissions model (Lake Formation permissions) that enables fine-grained access control for Data Catalog resources. +If your table buckets are integrated with the AWS analytics service using Lake Formation, then Lake Formation manages access to your tables and requires that each IAM principal (user or role) be authorized to perform actions them. Lake Formation uses its own permissions model (Lake Formation permissions) that enables fine-grained access control for Data Catalog resources.