AWS Lake Formation is launching a Read-Only Administrator role which enables customers to add a Data Lake Administrator role with read-only permissions for Glue Data Catalog metadata and Lake Formation permissions. Previously, Data Lake Administrators could perform actions on the Glue Data Catalog and Lake Formation permissions, including modifying the Lake Formation grants and LF-Tags. Now, you can add an IAM role or user to be a Read-Only Administrator. Using this role, Read-Only Administrators can access metadata and permissions without making changes. This allows Read-Only Administrators to search metadata without needing access the data and to validate permissions without requiring access to make changes to permissions.
Source:: Amazon AWS