API DocumentationProduct Documentation
Product Documentation

Admin SQL Access

Suggest Edits

This page describes how organization administrators can access their organization-level SQL credentials and manage non-Admin user SQL credentials. It also shows how you can view your SQL tables and structure.

To have non-Admin users configure their own unique SQL access credentials for querying SQL tables in third-party applications, see Get Credentials to Query SQL tables in Third-Party Applications.

Get Org-Level Credentials to Query SQL Tables in Third-Party Applications

To get organization-level SQL credentials to query Amazon Athena tables in third-party applications, do the following:

  1. Sign in to the TDP as user with an Administrator role. Make sure that you're in the right organization.
  2. In the left navigation menu, choose Administration. Then, choose Organization Settings. The Organization Settings page appears.
  3. Select the Sql Access tab. The SQL Access tab appears.
  4. In the SQL CREDENTIALS section, select the Create Credentials button to create org-level SQL credentials for your organization. This option appears only if you haven't created org-level SQL credentials before. Otherwise, the button displays as Replace Credentials. The following information displays in the SQL CREDENTIALS section:
  • ACCESS KEY: Serves as your User parameter when setting up either the JDBC or ODBC driver.
  • SECRET KEY: Serves as your Password when setting up either the JDBC or ODBC driver.
  • Drivers: Provides the option to download either the latest JDBC or ODBC driver. For more information, see What Driver Should I Use?.
  • URL: Shows the URL to your TDP organization's instance.
  • S3OUTPUTLOCATION: Shows the location in Amazon Simple Storage Service (Amazon S3) where query results will be stored.
  1. Copy each credential value to a secure location by selecting the copy icon next to each value.

🚧

IMPORTANT

Generating new SQL credentials will break existing SQL connections with third-party applications. New SQL credentials now create an Amazon Athena workgroup, which is appended to SQL users' Connection URL. Customers must copy over this new Connection URL along with the newly generated Access Key and Secret Key when re-establishing connections with third-party applications.

Rotate Org-Level SQL Credentials

🚧

IMPORTANT

An organization can have one set of org-level SQL credentials active at a time only. If you choose Rotate Credentials, the new set of generated credentials will cause the previous set of credentials to stop working.

To rotate your existing org-level SQL credentials to query Amazon Athena tables in third-party applications, do the following:

  1. Sign in to the TDP as user with an Administrator role. Make sure that you're in the right organization.
  2. In the left navigation menu, choose Administration. Then, choose Organization Settings. The Organization Settings page appears.
  3. Select the Sql Access tab. The SQL Access tab appears.
  4. In the SQL CREDENTIALS section, select the Replace Credentials button. A dialog appears that asks you to confirm the change. Choose Create new credentials. New Admin SQL credentials appear.

Manage User SQL Credentials

To see a list of all users with active SQL credentials or to rotate or revoke SQL credentials of specific non-Admin users, do the following:

  1. Sign in to the TDP as user with an Administrator role. Make sure that you're in the right organization.
  2. In the left navigation menu, choose Administration. Then, choose Organization Settings. The Organization Settings page appears.
  3. Select the Sql Access tab. The SQL Access tab appears.
  4. In the USER LIST section, a list of all users within your TDP organization with active SQL credentials displays.
  5. Find the user whose SQL credentials you want to manage. Then, in the far right of that user's row, choose the hamburger menu icon.
  6. Choose one of the following options from the dropdown, based on the action you want to take:
    • For Login Users: Choose Revoke SQL Access Creds to revoke the user's personal SQL credentials.
    • For Service Users: Choose either Rotate SQL Access Creds to rotate the Service User's SQL credentials, or Revoke SQL Access Creds to revoke the SQL credentials.

View Athena SQL Tables and Structure

To view your SQL tables' properties, columns, and parameters, do the following:

  1. Sign in to the TDP as user with an Administrator role.. Make sure that you're in the right organization.
  2. In the left navigation menu, choose Administration. Then, choose Organization Settings. The Organization Settings page appears.
  3. Select the Sql Access tab. The SQL Access tab appears.
  4. In the SQL TABLES section, select the SQL table that you want to see. The row expands to show the table's properties, columns, and parameters.

Updated 2 days ago