Assign authorization policies to projects within an Amazon DataZone domain unit

In Amazon DataZone, domain units enable you to organize your assets and other domain entities under specific business units and teams. For more information, see Amazon DataZone terminology and concepts.

In an Amazon DataZone domain unit, you can assign the following authorization policies to your projects to grant these entities various authorization permissions within this domain unit:

Glossary creation policy
Metadata forms creation policy
Custom asset type creation policy

To assign authorization policies to projects within a domain unit, complete the following procedure:

Navigate to the Amazon DataZone data portal URL and sign in using single sign-on (SSO) or your AWS credentials. If you’re an Amazon DataZone administrator, you can navigate to the Amazon DataZone console at https://console.aws.amazon.com/datazone and sign in with the AWS account where the domain was created, then choose Open data portal.
Choose View domains and choose the domain and the domain unit where you want to assign authorization policies.
On the domain unit details page, choose the authorization policy that you want to assign to projects and then choose Add project.
In the Add projects pop up window, do one of the following:
- Choose Selected projects in a domain unit, specify projects to which you want to assign the selected authorization policy, and then choose Add projects.
- Choose All projects in a domain unit and then choose Add projects.

Warning Javascript is disabled or is unavailable in your browser.

To use the Amazon Web Services Documentation, Javascript must be enabled. Please refer to your browser's Help pages for instructions.

Document Conventions

Project membership policy in the hierarchy of domain units in Amazon DataZone

Assign authorization policies within blueprint configurations