ReadonlyinstanceIAM Identity Center instance ID to integrate with Lake Formation. This is the SSO instance that manages users and groups for data lake access.
Use cases: SSO-based Lake Formation access; Centralized user/group management
AWS: IAM Identity Center instance
Validation: Required; valid Identity Center instance ID (e.g. "ssoins-...")
Optional ReadonlysharesAccounts, organizations, or OUs to share Lake Formation services with via IAM Identity Center. Accepts account IDs, organization ARNs, and OU ARNs.
Use cases: Cross-account Lake Formation sharing; Org-wide data governance via SSO
AWS: RAM resource shares, IAM Identity Center
Validation: Optional; array of account IDs or organization/OU ARNs
IAM Identity Center integration settings for Lake Formation. Connects Lake Formation to an Identity Center instance for SSO-based data lake access, with optional RAM shares for cross-account/org sharing.