IAM resource types for accessing data in Amazon Neptune - Amazon Neptune
Services or capabilities described in AWS documentation might vary by Region. To see the differences applicable to the AWS European Sovereign Cloud Region, see the AWS European Sovereign Cloud User Guide.

IAM resource types for accessing data in Amazon Neptune

Data resources, like data actions, have a neptune-db: prefix.

In a Neptune data-access policy, you specify the DB cluster that you are giving access to in an ARN with the following format:

arn:aws:neptune-db:region:account-id:cluster-resource-id/*

Such a resource ARN contains the following parts:

  • region is the AWS Region for the Amazon Neptune DB cluster.

  • account-id is the AWS account number for the DB cluster.

  • cluster-resource-id is a resource id for the DB cluster.

    Important

    The cluster-resource-id is different from the cluster identifier. To find a cluster resource ID in the Neptune AWS Management Console, look in the Configuration section for the DB cluster in question.