MDAA TS Docs
    Preparing search index...

    Interface AssociatedAccountProps

    interface AssociatedAccountProps {
        account: string;
        cdkRoleArn?: string;
        createCdkUser?: boolean;
        glueCatalogKmsKeyArn?: string;
        lakeformationManageAccessRoleArn?: string;
        region?: string;
    }

    Hierarchy (View Summary)

    Index

    Properties

    account cdkRoleArn? createCdkUser? glueCatalogKmsKeyArn? lakeformationManageAccessRoleArn? region?

    Properties

    account: string

    AWS account ID of the associated account. Must also be configured as an additional_account on the MDAA module in mdaa.yaml.

    Use cases: Cross-account domain association; Multi-account data governance

    AWS: DataZone cross-account association target

    Validation: Required; valid 12-digit AWS account ID

    cdkRoleArn?: string

    CDK deployment role ARN for cross-account infrastructure provisioning in the associated account.

    Use cases: Cross-account CDK deployments; Automated infrastructure provisioning

    AWS: IAM role for CDK cross-account deployment

    Validation: Optional; valid IAM role ARN with CDK deployment permissions

    createCdkUser?: boolean

    When true, creates a DataZone domain user for CDK-based deployments in the associated account.

    Use cases: Automated CDK deployments within DataZone; Programmatic project management

    AWS: DataZone user profile for CDK automation

    Validation: Optional; boolean

    false
    glueCatalogKmsKeyArn?: string

    KMS key ARN for Glue catalog encryption in the associated account. If omitted, looked up from a standard SSM parameter created by the Glue Catalog Settings module and RAM-shared to associated accounts.

    Use cases: Cross-account catalog encryption; Customer-managed key for associated account Glue catalog

    AWS: KMS key for Glue Data Catalog encryption in the associated account

    Validation: Optional; valid KMS key ARN; key must be accessible from the associated account

    lakeformationManageAccessRoleArn?: string

    IAM role ARN for Lake Formation access management in the associated account. Should be an LF Admin role, likely created by the LF Settings module. If omitted, looked up from the standard LF Settings SSM parameter.

    Use cases: Cross-account Lake Formation governance; Fine-grained data permissions in associated accounts

    AWS: IAM role for Lake Formation permission management in the associated account

    Validation: Optional; valid IAM role ARN with Lake Formation admin permissions

    region?: string

    AWS region for the associated account resources. Defaults to the deploying stack's region if omitted.

    Use cases: Multi-region domain association; Regional resource targeting

    AWS: Target region for cross-account DataZone resources

    Validation: Optional; valid AWS region identifier

    Settings

    Member Visibility

    On This Page

    Properties