Using Datazone IAM Credentials Provider in Windows

You can configure the connector to authenticate the connection using IAM credentials configured with AWS DataZone. To do this, you must specify your IAM credentials along with your DataZone Domain ID, Environment ID, and Domain Region.

To configure authentication using DataZone IAM in Windows:

1. To access authentication options, open the ODBC Data Source Administrator where you created the DSN, then select the DSN, then click Configure, and then click Authentication Options.
2. From the Authentication Type drop-down list, select DataZoneIAM.
3. In the User field, type the access key provided by your AWS account.
4. In the Password field, type the secret key provided by your AWS account.
5. To encrypt your credentials, click Password Options and then select one of the following:
   • If the credentials are used only by the current Windows user, select Current User Only.
   • Or, if the credentials are used by all users on the current Windows machine, select All Users Of This Machine.
6. In the Domain ID field, type the ID of your AWS DataZone domain.
7. In the Environment ID field, type the ID of the DataZone environment associated with your Athena environment.
8. In the Domain Region field, type the AWS Region where your DataZone domain is provisioned.
9. To save your settings and close the Authentication Options dialog box, click OK.

   Note: The IAM user or role must have the required DataZone and Athena permissions. For more information, see "Create IAM roles" in the Amazon Athena User Guide: https://docs.aws.amazon.com/datazone/latest/userguide/create-iam-roles.html