Skip to content


This topic describes how to connect Athena application to PrivaceraCloud.

  1. Go the Setting > Applications.

  2. In the Applications screen, select Athena.

  3. Enter the application Name and Description, and then click Save.

  4. Click the toggle button to enable Access Management for your application.

    In the BASIC tab, enter values in the following fields.

    • With Use IAM Role disabled:

      1. AWS Access Key: AWS data repository host account Access Key

      2. AWS Account Secret Key: AWS data repository host account Secret Key

      3. AWS_ATHENA_RESULT_STORAGE_URL: Query results storage bucket URL

      4. Click Save.

    • With Use IAM Role enabled:

      Related Information

      In the AWS Console, do the following:

      1. Create or use an existing IAM role in your environment. The role should be given access permissions by attaching an access policy in the AWS Console.

      2. Configure a Trust relationship with PrivaceraCloud. See AWS Access Using IAM Trust Relationship for specific instructions and requirements for configuring this IAM Role.

      Once that role is established you will provide its full ARN to PrivaceraCloud.

      1. AWS IAM Role

      2. AWS IAM Role External Id

      3. AWS_ATHENA_RESULT_STORAGE_URL: Query results storage bucket URL

      4. Click Save.

  5. In the ADVANCED tab, you can add custom properties.

  6. Using the IMPORT PROPERTIES button, you can browse and import application properties.


    Make sure that you can only use one dataserver per account for Access Management.

  7. Recommended: Install the AWS CLI.

    1. Open User Interface: Launch Pad and follow the steps to install and configure AWS CLI to your workstation so that it uses the PrivaceraCloud S3 Data Server proxy.
  8. Recommended: Validate connectivity by running AWS CLI for Athena queries such as:

    aws athena start-query-execution --query-string "SHOW DATABASES"

Last update: February 22, 2022