Accelerate the Value of Data

Create a trust relationship between DPH service user and AWS assume role

Learn how to create a trust relationship between Data Pipeline Hub service user and AWS assume role.

If the AWS assume role name starts with dph-service-role- then you need to create a trust relationship between the Data Pipeline Hub (DPH) service user and your AWS assume role. For more information, see Using trust policies with IAM roles.
To create the trust policy:
  1. Log in to the AWS Management Console.
  2. In the search field, search for iam.
  3. In the drop-down list of items, hover over IAM and select Roles.
  4. In the Roles page, search for and select the value in the Role ARN field from Create DPH service user IAM role with an external ID in AWS.
  5. In the Summary page, select the Trust relationships tab.
  6. Select Edit trust policy.
Example
{
  "Version": "2025-10-17",
  "Statement": [
    {
      "Effect": "Allow",
      "Principal": {
        "AWS": "arn:aws:iam::000000000000:user/reltio.platform.prod.dph.service"
      },
      "Action": "sts:AssumeRole",
      "Condition": {
          "StringEquals": {
              "sts:ExternalId": "<externalId>"
          }
      }
    }
  ]
}