Change Default Catalog Settings

Lake Formation starts with the "Use only IAM access control" settings enabled for compatibility with existing AWS Glue Data Catalog behavior. Follow these steps to disable those settings to enable fine-grained access control with Lake Formation permissions.
  1. Open the AWS Lake Formation console at
  2. In the navigation pane, under Data catalog, choose Settings.
  3. Clear both check boxes and choose Save.
  4. Optional: In the navigation pane, under Permissions, choose Administrative roles and tasks. If you see IAMAllowedPrincipals group under Database creators, select the IAMAllowedPrincipals group, and choose Revoke. The Revoke permissions dialog box appears, showing that IAMAllowedPrincipals has the Create database permission. Choose Revoke.