问题
Using Dynamo DB for my application. I have some critical reference values and want to keep those in DynamoDB. I am not very sure about this but can we have a policy or way to restrict that DynamoDb table access from any VPC?
Thanks Kiran
回答1:
Limiting access from a VPC is not possible, since DynamoDB operates as a regional manage service outside your VPC.
However there are several other ways to implement access control to Dynamodb. 1) Using IAM user access keys and policies 2) Using federated access control using Cognito/User Pools or Amazon STS
Note: If you need more granularity of access, you can use Dynamodb fine grained access control mechanisms. If your data are highly sensitive try considering Amazon KMS.
来源:https://stackoverflow.com/questions/42969560/restrict-aws-dynamodb-access-from-particular-aws-vpc