Skip to end of banner
Go to start of banner

Dynamo DB Account

Skip to end of metadata
Go to start of metadata

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 2 Next »

In this article

Overview

Use this account type to connect Dynamo DB Snaps with data sources that use Dynamo DB account.

Prerequisites

None

Limitations

None

Known Issues

None

Account Settings


ParameterData TypeDescriptionDefault ValueExample 
LabelString

Required. Unique user-provided label for the account.

N/ADynamo DB Account
AWS access key IDString/Expression

Required. Enter the access key ID associated with your AWS authentication.

N/AABCDEFGHIJKL1MNOPQRS
AWS secret keyString/ExpressionRequired. Enter the secret key associated with your AWS authentication.N/AaBcdeFGhiJKLM/N1OPQRS/t
AWS end pointString/ExpressionRequired. Enter the AWS end point URL. See AWS Service end points for more information.N/Adynamodb.us-west-1.amazonaws.com
AWS regionString/Expression

Enter the AWS region where the application is running. Allowed values are:

  • us-east-1
  • us-west-1
  • us-west-2
  • eu-west-1
  • eu-central-1
  • ap-southeast-1
  • ap-southeast-2
  • ap-northeast-1
  • sa-east-1
N/Aap-northeast-1





Account Encryption

Standard Encryption

If you are using Standard Encryption, the High sensitivity settings under Enhanced Encryption are followed.

Enhanced Encryption

If you have the Enhanced Encryption feature, the account fields are encrypted for each sensitivity level as shown below for this account:

  • HighAWS access key ID, AWS secret key

  • Medium + HighAWS access key ID, AWS secret key

  • Low + Medium + HighAWS access key ID, AWS secret key

Dynamo DB Permissions

See Amazon Dynamo DB for more information about DB permissions.

The ListTables permission requires all resources (*) to be selected (as it needs to be able to list all the DynamoDB tables), but the others can have policies that are more limited (for example, to a particular table) as per the DynamoDB API Permissions reference. The most basic and permissive Policy document that could be assigned to the user that would guarantee all the required permissions are granted would be:

{
  "Version": "2012-10-17",
  "Statement": [
    {
      "Sid": "Stmt1482439123852",
      "Action": [
        "dynamodb:BatchGetItem",
        "dynamodb:BatchWriteItem",
        "dynamodb:DescribeTable",
        "dynamodb:ListTables",
        "dynamodb:Scan",
        "dynamodb:UpdateItem"
      ],
      "Effect": "Allow",
      "Resource": "*"
    }
  ]
}



See Also

  • No labels