How can I secure an Athena datasource only applies for a particular Schema specified in the dataset?

alltej · December 12, 2025, 6:19pm

I have several namespaces and each namespace has their own Athena datasource. So each of these namespaces has there own datasets. I need to ensure that the datasets(for a particular namespace) physical table datasource arn has the matching or only works for the Athena schema? It seems not secure coz when defining an Athena datasource, it does not specify parameter for a schema. So in the dataset, you can specify the datasource arn and the schema could be from another namespace.

Brett · December 12, 2025, 9:41pm

Hi @alltej,

Thank you for your question, this raises a solid security question; I came across the documentation below that could be helpful in your scenario. I’m wondering if this could be handled by a combination of AIM and Lake Formation permissions and Glue. Let me know if this process could help in your case or if you have any additional questions!
Use Amazon Athena and Amazon QuickSight in a cross-account environment | AWS Big Data Blog?

Topic		Replies	Views
Use other users athena data for datasource Q&A data-source , quick-sight	4	755	August 9, 2023
Segmentation of athena databases by groups (governance) Q&A data-source , quick-sight , user-group , dataset	4	530	December 30, 2022
Access Denied when creating a new dataset with Athena Q&A feature-request , quick-sight , dataset	13	3840	March 9, 2023
Error when connecting to Athena Data Source Q&A data-source , error , quick-sight , data-preparation	8	5880	February 22, 2023
Hi, is any option to create dataset in the custom namespace with API, without creating Admin user to assign him dataset? Q&A data-source , namespace , quick-sight	3	1384	May 4, 2022

How can I secure an Athena datasource only applies for a particular Schema specified in the dataset?

Related topics