Skip to Content

Set up your AWS environment

test
0 %
Set up your AWS environment
Details
// Explore More Tutorials

Set up your AWS environment

12/03/2018

Prepare your AWS environment to complete this tutorial series.

You will learn

  • Create a User in IAM
  • Create and configure a S3 bucket


Warning: Please read carefully before starting!

Before, you get started, please be aware that using SAP HANA, express AMI on AWS is not covered by the AWS Free tier, and therefore charges for both the EC2 instance and the provisioned EBS volumes used by this instance will incur.

Also, with the EBS volumes types in use, even if your EC2 instance running your SAP HANA, express edition is stopped, charges will be incurred for the provisioned EBS volumes. Only detaching and deleting the EBS volumes will prevent charges. However, this will make your SAP HANA, express edition no longer usable.

Please be aware that completing this tutorial track will incur a charge estimated between 10 and 20 USD on your AWS account.

Make sure to complete the Cleanup before you leave tutorial if you are not planning to complete the track.


Step 1: Sign in or Create an Account on AWS

Sign in or create an account on Amazon Web Services.

Amazon Web Services
Log on to answer question
Step 2: Access the AWS Management Console

Access the Amazon Web Services Management Console.

Amazon Web Services
Log on to answer question
Step 3: Create a user in AWS

In order to later configure the ODBC connection from SAP HANA, express edition to Amazon Athena, you will need to provide your credentials using the Access & Security Key.

Access the IAM Management Console (you also use the search for IAM in the Amazon Web Services Management Console).

Amazon Web Services

On the left side, click on Users, then click on Add User.

Amazon Web Services

Enter a User Name like athena.

Set the Access type to Programmatic access.

Click on Next: Permissions.

Amazon Web Services

Select Attach existing policies directly.

Search and select the following policies:

  • AWSQuicksightAthenaAccess
  • AmazonAthenaFullAccess
  • AmazonS3FullAccess

Click on Next: Review.

Amazon Web Services

Review the user creation details then click on Create User.

Amazon Web Services

Click on Download .csv to download the Access key ID and Secret access key.

Note: the Access key ID and Secret access key will be used as credentials to authenticate to Amazon Athena.

Click on Close.

Amazon Web Services

Click on the newly created user.

Amazon Web Services

Click on the copy icon to copy the User ARN.

Amazon Web Services

Save locally in a text editor the User ARN.

Provide an answer to the question below then click on Validate.

Paste the User ARN.
×
Step 4: Create an S3 bucket

If you have followed the Getting Started guide for Amazon Athena, a S3 bucket will be created automagically.

But for the purpose of this tutorial series, you will create a dedicated bucket.

Access the S3 Management Console.

Click on Create bucket.

Amazon Web Services

Enter as Bucket name sap-hana-athena-<my unique id> where <my unique id> is a unique identifier across all existing S3 bucket on AWS.

You can use the user ARN numerical identifier from the previous step as <my unique id>.

For the sake of simplicity, choose US East (N. Virginia) as the region.

Note:

Please note that in order to use your S3 bucket with Amazon Athena, they will need to be located in the same region. Here is the list of regions where Amazon Athena is available:

  • Northern Virginia
  • Ohio
  • Oregon
  • Ireland
  • Frankfurt
  • London
  • Singapore
  • Tokyo
  • Sydney
  • Seoul
  • Mumbai

You can find the region coverage for all AWS services here.

It is also recommended for you to create your SAP HANA, express edition instance in the same region.

Click on Create.

Amazon Web Services

Click on the newly created bucket.

Amazon Web Services

Select Permissions, then Bucket policy.

Paste the following code in the Bucket Policy editor after adjusting the Sid (the token) representing your S3 Bucket ARN along with the AWS Principal using the User ARN saved previously:

{
    "Id": "sap-hana-athena-<my unique id>",
    "Version": "2012-10-17",
    "Statement": [
        {
            "Sid": "sap-hana-athena-<my unique id>",
            "Action": [
                "s3:GetBucketLocation",
                "s3:GetObject",
                "s3:ListBucket",
                "s3:ListBucketMultipartUploads",
                "s3:ListMultipartUploadParts",
                "s3:AbortMultipartUpload",
                "s3:PutObject"
            ],
            "Effect": "Allow",
            "Resource": [
                "arn:aws:s3:::sap-hana-athena-<my unique id>",
                "arn:aws:s3:::sap-hana-athena-<my unique id>/*"
            ],
            "Principal": {
                "AWS": "arn:aws:iam::<my unique id>:user/athena"
            }
        }
    ]
}

Click on Save.

Amazon Web Services

Provide an answer to the question below then click on Validate.

Paste the Bucket ARN.
×

Next Steps

Back to top