Skip to main content

Privacera Documentation

Create AWS Lake Formation connectors for multiple AWS regions

This topic describes how to setup AWS Lake Formation connectors for multiple AWS regions.

Architecture

The following diagram depicts the architecture of AWS Lake Formation connectors with multiple AWS regions.

Figure 4. Architecture of AWS Lake Formation connectors with multiple AWS regions
Architecture of AWS Lake Formation connectors with multiple AWS regions


  • Left Panel: AWS Cloud with 2 regions us-east-1 and us-west-2.

  • Right Panel: Two separate AWS Lake Formation connectors configured within Privacera. Each connector is responsible for syncing policies from us-east-1 and us-west-2 region respectively.

  • Resource Policies : This block contains the Hive and AWS Lake Formation policy repositories within Privacera. We have privacera_us_east_1_hive / privacera_us_east_1_lakeformation and privacera_us_west_2_hive / privacera_us_west_2_lakeformation for us-east-1 and us-west-2 region policies.

  • Tag Policies: This block contains the tag policy repositories within Privacera. We can have tag based AWS Lake Formation policies inside policy repository privacera_us_east_1_tag and privacera_us_west_2_tag for us-east-1 and us-west-2 region.

Set up AWS Lake Formation connectors with multiple regions for PrivaceraCloud

Notice

Follow the steps outlined in Connect AWS Lake Formation application on PrivaceraCloud to setup the connectors for each region.

  • Set AWS Account Id, AWS Assume IAM role ARN and AWS region fields in the BASIC tab for each region you want to configure.

  • Set the Policy repository name for hive service and Policy repository name for lakeformation service values in the ADVANCE tab for each policy repository you configured for your region.

    Example

    Configured values for us-east-1 connector:

    • Policy repository name for hive service: privacera_us_east_1_hive

    • Policy repository name for lakeformation service: privacera_us_east_1_lakeformation

  • Restart the connector application
    1. Go to SettingsApplications → select the Lakeformation connector application.

    2. Edit the application → Disable it → and Save it.

    3. Again open the same application → Enable it → and Save it.