Skip to main content
This guide walks through adding a new SageMaker Studio user profile to a SageMaker Domain, explains the key configuration choices, and highlights best practices for security, storage, and resource management. Follow the steps in sequence and use the checks described to confirm whether a Studio space uses EBS (Studio new) or EFS (Studio Classic). Step 1 — Add a user profile from the SageMaker Domain “User profiles” tab. In a quick-start domain you often begin with one default user. To add another, open the User profiles tab and click Add user.
The image shows a screenshot of an Amazon SageMaker "Domain details" page under the "User profiles" tab, with a list of user profiles and an "Add user" button. The slide title reads "Workflow: Adding Another User."
A dialog opens to capture the new user settings. Provide a user name (for example, user2) and select an execution role. The execution role is an IAM role that controls what AWS resources the user can access when using Studio.
A screenshot titled "Workflow: Adding Another User" showing the General settings form for creating a new user, with a Name field filled with "user2", an Execution role dropdown, and an optional Tags section. The left sidebar lists steps (Configure Applications, Customize Studio UI, etc.) and there's a Cancel/Next button at the bottom-right.
Step 2 — Configure the applications available to this user. AWS is deprecating SageMaker Studio Classic, so the default and recommended selection is SageMaker Studio — new (Studio v2). Only select Studio Classic for specific legacy needs.
A screenshot titled "Workflow: Adding Another User" showing the Amazon SageMaker "Add user profile" Configure Applications page with options for SageMaker Studio, JupyterLab, and Canvas. The left sidebar lists setup steps while the main pane displays settings and toggles for choosing a default studio and idle shutdown.
Best practice: a SageMaker user profile should represent a single person. The audit, security, and billing models assume one Identity Center (or IAM) user maps to exactly one Studio user profile. Sharing profiles across people undermines auditability and isolation.
A presentation slide titled "Workflow: Adding Another User" that lists Identity Center best practices: one Identity Center user = one SageMaker profile, and profiles are auto-created when assigned to SageMaker Studio.
One Identity Center user should normally equal one SageMaker profile. In enterprise setups, you can auto-create profiles when users are assigned access via AWS Identity Center / SSO.
Security benefits from one-profile-per-user include clear audit trails, resource isolation, and role-based access control mapped to individuals.
A presentation slide titled "Workflow: Adding Another User" showing "Security Benefits" with a shield icon and four items: audit trails, proper isolation, role-based access, and secure workspaces. The slide has a dark blue background and a small © KodeKloud note.
From a resource management perspective, per-user profiles allow quotas, isolated storage accounting, separate execution roles, and clearer compute usage metrics for cost attribution.
A presentation slide titled "Workflow: Adding Another User" describing Resource Management, with a gear icon on the left and four colored bullet points outlining quotas, personal storage allocation, separate execution roles, and better tracking of compute usage per user.
Avoid generic team or shared profiles. Each team member should have a distinct profile — do not reuse a profile for multiple IAM or Identity Center users.
A presentation slide titled "Workflow: Adding Another User" showing three boxed tips with icons. Each tip warns against sharing user profiles, creating generic team profiles, or using a single profile for multiple IAM/Identity Center users.
Do not share a single SageMaker profile across multiple people. Shared profiles break security, audit logs, and cost allocation.
When you continue the wizard, Studio (new) offers UI customization toggles — you can enable or hide JupyterLab, Code Editor, Canvas, RStudio, and third-party integrations. Expose only the apps the user needs to reduce UI clutter and accidental usage.
A presentation slide titled "Workflow: Customizing UI" showing a screenshot of an application settings page (Amazon SageMaker Studio) where you can toggle which apps — like JupyterLab, Code Editor, RStudio and others — are displayed in the studio UI. The right side shows a preview of the selected application icons.
Note: these toggles only change visibility. To actually restrict a user from using a capability, adjust the IAM permissions attached to the execution role for that profile. When the wizard reaches Data and Storage, the UI may still show an AutoMountHomeEFS option even if you selected Studio (new). This is a legacy artifact: Studio Classic uses EFS, while Studio (new) uses EBS for notebook spaces.
A slide titled "Workflow: Data and Storage" showing an Amazon SageMaker "Add user profile" screen with Data and Storage settings like AutoMountHomeEFS and CustomPosixUserConfig. The panel shows options (e.g., "Inherit settings from domain") and navigation buttons including Back and Next.
After creating the profile you will see it listed under the User profiles tab. You can then launch Studio as that new user and open a JupyterLab space. Step 3 — Confirm whether a JupyterLab space is backed by EFS (Classic) or EBS (new). Open a terminal inside JupyterLab and run df -h: 
# Run inside a JupyterLab terminal to inspect storage backing
df -h

# Example: EFS (Studio Classic)
# Filesystem         Size  Used Avail Use% Mounted on
# Example: EBS (Studio new)
# Filesystem        Size  Used Avail Use% Mounted on
# /dev/nvme1n1       50G   5G   45G   10% /home/sagemaker-user
If you see an EFS mount (efs-xxxx:/), the space uses Studio Classic storage. If you see an NVMe device such as /dev/nvme1n1, the space uses EBS (Studio new). When launching a JupyterLab space as a different user, spaces may be private or shared. Private spaces created by another user will not appear for user2; only spaces explicitly shared or created for user2 will be visible.
A dark-themed screenshot of the "Workflow: Launching JupyterLab" screen in SageMaker Studio showing the JupyterLab dashboard. It shows a running JupyterLab space, sidebar app icons (JupyterLab, RStudio, Canvas, etc.), and action buttons like Stop and Open.
Open the space to begin using notebooks and other Studio apps as usual.
A screenshot of the JupyterLab interface titled "Workflow: Launching JupyterLab," showing a file browser on the left and a launcher on the right with notebook and console kernel tiles (Python 3, Glue PySpark, SparkMagic, etc.).
If you created the profile as SageMaker Studio Classic, UI customization options are limited. Notebook sharing must be explicitly enabled and requires a specific S3 share location. Example S3 path used for Classic notebook sharing: s3://sagemaker-studio-485186561655-ocndvxhvpI9/sharing This S3-based sharing step applies only to Studio Classic — Studio (new) does not require it.
A presentation slide titled "Workflow: User Profile Classic" showing an Amazon SageMaker "Add user profile" configuration screen. The screenshot highlights choosing "SageMaker Studio Classic" as the default Studio application and shows JupyterLab idle-shutdown options.
When Studio Classic is selected, UI customization toggles are hidden.
A screenshot of an "Add user profile" workflow for Amazon SageMaker titled "Workflow: User Profile Classic." The page shows the "Customize Studio UI" step with a yellow warning saying customization isn't available for SageMaker Studio Classic, plus left-side step navigation and Back/Next buttons.
Recommendation: Prefer SageMaker Studio (new) unless you have a legacy requirement. Studio (new) offers productivity, resource, MLOps, and security advantages:
  1. Streamlined development & collaboration
  • JupyterLab-based IDE.
  • Shared spaces for real-time collaboration.
  • Notebook sharing (link-based or via Git).
  • SageMaker Experiments for logging and comparing runs.
A presentation slide titled "Result: SageMaker Studio – Enhanced ML Productivity" showing four numbered feature cards. The cards list JupyterLab-Based IDE, Shared Spaces, Notebook Sharing, and Experiment Tracking with short descriptions.
  1. Better resource and compute management
  • On-demand kernel selection across tabs.
  • Auto-shutdown and resource scaling to save costs.
  • EBS storage in Studio (new) for lower latency and higher throughput vs EFS.
A presentation slide titled "Result: SageMaker Studio – Enhanced ML Productivity" showing the section "2. Better Resource and Compute Management" with three feature cards: On‑Demand Kernel Selection, Auto‑Shutdown & Resource Scaling, and EBS Storage (instead of EFS). The cards include brief explanations about switching kernels without restarting, cost‑saving auto‑stop/scaling, and faster isolated storage.
  1. Improved MLOps and automation
  • SageMaker Pipelines to orchestrate ML workflows.
  • Integrated Git support for loading repos into Studio.
  • SageMaker Debugger and Model Monitor for production debugging and observability.
  • Streamlined deployment to SageMaker endpoints.
A presentation slide titled "Result: SageMaker Studio – Enhanced ML Productivity" showing four feature cards under "3. Improved MLOps and Automation." The cards list SageMaker Pipelines (automate ML lifecycle), Integrated Git Support, Debugging and Monitoring, and Easier Deployment to SageMaker Endpoints.
  1. Security and governance improvements
  • Fine-grained IAM controls for Studio features.
  • VPC and network isolation options for managed instances.
  • Better auditability via CloudTrail and CloudWatch for jobs, endpoints, and provisioning.
A presentation slide titled "Result: SageMaker Studio – Enhanced ML Productivity" under the heading "4. Security and Governance Improvements." It shows three cards describing IAM role‑based access control, network isolation, and auditability/logging (integrated with CloudTrail and CloudWatch).
Many newer SageMaker features (Model Monitor, Feature Store, Model Registry, Debugger, Canvas, Pipelines) are accessible only from Studio (new). You must create a SageMaker Domain before launching Studio. Domains are the administrative boundary: within a domain you define users, applications, storage, and networking. Quick start domains are convenient for learning but not recommended for production since they use the default VPC. For production, create domains integrated with IAM/Identity Center and a custom VPC. Studio is more than notebooks — it hosts multiple apps such as Code Editor/VS Code, RStudio, MLflow integrations, third-party SaaS tools, and more.
A presentation slide titled "Summary" that lists four key points about Amazon SageMaker Studio. The points note Studio is required for newer features, is launched within a domain that defines users/applications/storage, quickstart domain setup supports multiple users, and multiple apps are available (JupyterLab, Code Editor, RStudio, MLflow).
Quick reminders:
  • Launching JupyterLab requires a managed compute-backed JupyterLab space (a managed EC2 instance—choose sizes like m5.large).
  • Spaces can be private (single user) or shared (visible to multiple user profiles).
  • SageMaker Studio Classic is legacy and should be used only for continuity in existing Classic environments.
A presentation slide titled "Summary" with three numbered points: JupyterLab requires a space backed by a managed EC2 instance, spaces can be private or shared, and SageMaker Classic is outdated and should only be used in legacy environments.
That concludes this section. Further guidance on configuring spaces, compute, and kernel management in JupyterLab will be covered in a later chapter. Table — Quick comparison: SageMaker Studio (new) vs Studio Classic
Feature / AreaSageMaker Studio (new)SageMaker Studio Classic
Recommended?Yes (default)No (legacy)
Storage backendEBS (per-user volumes)EFS (shared POSIX)
UI customizationVisible and granularLimited / hidden
Notebook sharingBuilt-in (links, Git)S3-based sharing required
New SageMaker featuresSupportedOften unsupported
Best forNew projects, productionLegacy migrations or compatibility
Links and references

Watch Video

Practice Lab