Secure customer resource access in multi-tenant SaaS with Amazon VPC Lattice

Networking & Content Delivery Blog

This article discusses how to securely access customer resources in multi-tenant SaaS architectures using Amazon VPC Lattice and Resource Gateways. The key insights include:

Two main architectural approaches for multi-tenant resource access:
- One service network per tenant
- Single shared service network
VPC Lattice enables secure communication between applications across multiple accounts and VPCs
Resource Gateways allow direct connectivity to resources without complex networking configurations
Recommended to use Service Network Endpoints (SNEs) for most multi-tenant architectures
Provides implementation guides for both architectural approaches

The solution offers SaaS providers a flexible and secure method to access customer resources across different network environments while maintaining strong isolation and security controls.

Go to article

The AWS News Feed is currently looking for gold sponsors. If you want to support the AWS community and reach a large audience of AWS professionals, consider sponsoring the AWS News Feed.

Nov 10
2025

Use Amazon VPC Lattice to streamline and secure TCP resource connectivity across multiple AWS Accounts

Jun 1
2025

Streamline and secure access to shared services and resources with Amazon VPC Lattice

Feb 23
2024

Modern web application authentication and authorization with Amazon VPC Lattice

Aug 21
2024

Secure data in a multi-tenant environment by automatically enforcing prefix-level encryption keys in Amazon S3

The AWS News Feed is currently looking for silver sponsors. If you want to support the AWS community and reach a large audience of AWS professionals, consider sponsoring the AWS News Feed.

Secure customer resource access in multi-tenant SaaS with Amazon VPC Lattice

Related articles