Home icon

Simplify cross-account stream processing with AWS Lambda and Amazon DynamoDB

Database Blog

This article explains how to use resource-based policies to enable AWS Lambda functions in one AWS account to directly consume DynamoDB Streams from tables in another account, eliminating the need for custom relay infrastructure.

  • Resource-based policies on DynamoDB Streams grant cross-account Lambda access without custom infrastructure
  • Lambda manages ingestion, filtering, delivery, retries, and error handling automatically
  • Enables centralized data processing, shared services, and multi-tenant architectures
  • Requires resource policy on stream (source account) and IAM execution role (consuming account)
  • Both DynamoDB table and Lambda function must be in the same AWS Region
  • No additional charges beyond standard DynamoDB Streams and Lambda pricing
  • Includes step-by-step setup using AWS CLI with variables for reusability

This feature simplifies cross-account event-driven architectures for SaaS providers, centralized analytics, and isolated multi-account environments while maintaining strong access control.

Go to article

The AWS News Feed is currently looking for gold sponsors. If you want to support the AWS community and reach a large audience of AWS professionals, consider sponsoring the AWS News Feed.

Related articles

Jan 15
2026
AWS Lambda announces cross-account access for DynamoDB Streams
Mar 20
2024
Simplify cross-account access control with Amazon DynamoDB using resource-based policies
Mar 20
2024
Invoke AWS Lambda functions from cross-account Amazon Kinesis Data Streams
Oct 1
2025
Simplify cross-account storage management with Amazon EFS and Amazon EKS

The AWS News Feed is currently looking for silver sponsors. If you want to support the AWS community and reach a large audience of AWS professionals, consider sponsoring the AWS News Feed.