Specifies the type of authentication to use when connecting to Amazon Athena. If this property is left blank, the default authentication is used.

Possible Values

ADFS, AwsRootKeys, AwsIAMRoles, AwsIAMRolesAnywhere, AwsEC2Roles, AwsWebIdentity, AwsCredentialsFile, Okta, Keycloak, TemporaryCredentials, PingFederate, AwsCognitoBasic, AwsCognitoSrp, AzureAD, AwsDataZoneIDC

Data Type

string

Default Value

"AwsRootKeys"

Remarks

• ADFS: Set to use a single sign on connection with ADFS as the identity provider.
• AwsRootKeys: Authenticate using the root user access key and secret, to test something quickly. (Production use cases are encouraged to use something with narrowed permissions.)
• AwsIAMRoles: Authenticate using IAM Roles.
• AwsEC2Roles: Automatically use IAM Roles assigned to the EC2 machine where connector is currently running.
• AwsWebIdentity: Authenticate using Web Identity.
• AwsCredentialsFile: Set to use a credential file for authentication.
• Okta: Set to use a single sign on connection with OKTA as the identity provider.
• KeyCloak: Authenticate using KeyCloak.
• TemporaryCredentials: Authenticate using temporary security credentials alongside a session token.
• PingFederate: Set to use a single sign on connection with PingFederate as the identity provider.
• AwsCognitoBasic: Set to use Cognito based authentication.
• AwsCognitoSrp: Set to use Cognito based authentication. This is recommended over AwsCognitoBasic because this option does NOT send the password to the server for authentication, instead it uses the SRP protocol.
• AwsDataZoneIDC: Set to use DataZone IDC authentication.
• AzureAD: Authenticate using AzureAD.