Welcome to AWS re:Post

I want to create a generic greengrass component that runs a lambda function. I have data that is sent to a topic such as `plugin/config/"THINGNAME"` "THINGNAME" is the name of each individual thing. Is it possible to set the event source to the a topic which includes the variable for the thingName? eg. plugin/config/{iot:thingName} Each core device that runs this component will have a difference event source based on the thingName. Below is an example of what I have set the default configuration to it does not work as intended. It interprets the variable as a literal string. ``` { "lambdaExecutionParameters": { "EnvironmentVariables": {} }, "containerParams": { "memorySize": 16384, "mountROSysfs": false, "volumes": {}, "devices": {} }, "containerMode": "NoContainer", "timeoutInSeconds": 10, "maxInstancesCount": 100, "inputPayloadEncodingType": "json", "maxQueueSize": 1000, "pinned": true, "maxIdleTimeInSeconds": 60, "statusTimeoutInSeconds": 60, "pubsubTopics": { "0": { "topic": "plugin/config/{iot:thingName}", "type": "IOT_CORE" } } } ```lg...

I am running a Lightsail Instance (WordPress site). I have a static IP address assigned to the instance. It has been running for several months without any problems. I restarted the instance and now the public IP doesn't work, or at least I can't connect to my website. What do I need to do to get the public IP address working again? The static IP is 3.2118.65.209. The DNS is on Cloudflare, and the domain is registered there, too.lg...

My app uses lots of libraries (I am writing python 3.9, sklearn, numpy, plotly). When I import them locally - I end up with 800Mb worth of content! Documentation recommends far less and I was thinking if I should I break my app up into literally functions. The 'lean-ness' of function are really very appealing to me. Do Lamba Functions get it their names literally as they shouldn't really be more than a function? How 'big' should a function be or should I be using a container instead? Can anyone give me some guidance?lg...

I want to be able to run multiple processes in a GameLift fleet. When I test with gamelift locally, the following code can find the next open port on my machine (Windows). Concurrent server.exe processes will open on consecutive ports if one is in use, and are passed to the GameLift Server. In an actual GameLift fleet, however, multiple processes are trying to start on the same port (5000). I have the fleet port settings open between 5000-5500 for TCP and UDP. ``` public static ushort GetFirstOpenUdpPort(int startingPort, int maxNumberOfPortsToCheck) { var range = Enumerable.Range(startingPort, maxNumberOfPortsToCheck); var portsInUse = from port in range join used in System.Net.NetworkInformation.IPGlobalProperties.GetIPGlobalProperties().GetActiveUdpListeners() on port equals used.Port select port; var firstFreeUdpPortInRange = range.Except(portsInUse).FirstOrDefault(); if (firstFreeUdpPortInRange > 0) { Debug.Log($"..Open port found at {firstFreeUdpPortInRange}"); return (ushort)firstFreeUdpPortInRange; } else { Debug.LogError($"..No valid UDP ports available in the given range ({startingPort} to {startingPort + maxNumberOfPortsToCheck})"); return 0; } } ```lg...

I want to backup using AMI or Snapshot. During backup, the instance continues to write to EBS. At this time, is it possible to make non-disruptive backups while maintaining disk consistency?lg...

I am processing a dataset and need to submit a job to EMR serverless for the dataset to be processed in a distributed way. I have created an application in EMR studio. I would like to submit jobs to that application. I found the command to submit jobs ``` aws emr-serverless start-job-run \ --application-id application-id \ --execution-role-arn job-role-arn \ --job-driver '{ "sparkSubmit": { "entryPoint": "s3://us-east-1.elasticmapreduce/emr-containers/samples/wordcount/scripts/wordcount.py", "entryPointArguments": ["s3://DOC-EXAMPLE-BUCKET-OUTPUT/wordcount_output"], "sparkSubmitParameters": "--conf spark.executor.cores=1 --conf spark.executor.memory=4g --conf spark.driver.cores=1 --conf spark.driver.memory=4g --conf spark.executor.instances=1" } }' ``` But how can I run the above command from a Python 3 Data Science Notebook in SageMaker studio. Basically what endpoint do I need to use to submit the job.lg...

based on the docs, enabling throttling allows to set rate and burst in a usage plan. if burst is the number of request api will handle concurrently, so should the rate be always equal or less than the burst limit? why would we want a higher rate than we can can handle?lg...

Hi, I've created an opensearch cluster in a VPC. I'm able to "GET" the cluster details by hitting <vpc endpoint>/_cluster/settings but am not having luck when trying to "POST". Which URL do I need to POST to when the opensearch cluster is deployed in a VPC? Should it work with the <vpc endpoint>/_cluster/settings ? My working GET command - ``` def lambda_handler(event, context): x = requests.get('https://<vpc endpoint>/_cluster/settings?include_defaults=true') ``` output - Function Logs ``` :"5s","max_index_buffer_size":"-1","shard_inactive_time":"5m","index_buffer_size":"10%","min_index_buffer_size":"48mb..." ``` POST command that is not working - ``` def lambda_handler(event, context): url = 'https://vpc-XXXXXX-us-east-1.es.amazonaws.com/_cluster/settings' myobj = {"SnapshotOptions": { "AutomatedSnapshotStartHour": 3 } } x = requests.post(url, json = myobj) ``` output - Function Logs ``` START RequestId: b483f2ca-0051-468a-81cf-8a771a667bd2 Version: $LATEST {"Message":"Your request: '/_cluster/settings' is not allowed for verb: POST"} ``` documentation I followed - https://docs.aws.amazon.com/opensearch-service/latest/developerguide/configuration-api.html#configuration-api-actions-describedomainconfiglg...

I can't connect to my EC2 instance after attaching a new volume (from a snapshot). Please advise. Thank you.lg...

I'm working through a design that will start with polling a couple of source systems for data and then publishing the data onto an EventBridge. I'd like to use a custom bus to keep our traffic separate from the rest of the company, however, I hit a wall a few minutes ago. My intention was to use a rule configured to run every 15 minutes on the custom bus with a lambda target that would query the source system and then publish events onto the bus for other rules to process. But apparently, you can only create scheduled rules on the default bus. Can anyone explain why this limitation exists? We'd like to keep the solution serverless, so what other solutions is out there for running lambdas on a schedule? TIA! -Stevelg...

We make use of EC2 instance profiles to grant iam rights to our instances. This works fine. However when we use the cli or powershell within the instance the first call to an AWS service has a long delay, frequently around 30 seconds. Subsequent calls to other APIs are almost instant. Does anyone else see a delay on initial credentials retrieval? If not, what kind of response do you get for the first call? The delay is not specific to any AWS API. It could be practically any AWS cli command. Any ideas on how I could reduce this delay or how I could troubleshoot further to find the specific call? Many thankslg...

I have deployed codepipeline and codedeploy to take my code from a zip file in S3 and to deploy it into an EC2 autoscale farm. An external process updates EC2, CWE then triggers the pipeline. When it works it works fine. But if there is ever a failure to deploy onto EC2 eg, an error with the application stop script, the latest revision appears to be lost. If an autoscale event is triggered the previous revision is deployed. It would appear that a revision is only marked as good once a successful deployment has occured. This makes it very difficult to fix any issues as I have to rely on the old revision deploying successfully before I can release the new. I would prefer that I could fix the code, deploy/trigger a new revision, then terminate all machines and let them build now. Is there a codepipeline step I can use that will create a new application revision without having to deploy it to EC2 for it to be made active?lg...

I'm unable to authenticate/connect to local Informix server from AWS DMS endpoint. **Here is the Error: **Test Endpoint failed: Application-Status: 1020912, Application-Message: Cannot connect to DB2 LUW Server Network error has occurred, Application-Detailed-Message: RetCode: SQL_ERROR SqlState: 08001 NativeError: -1336 Message: [unixODBC][IBM][CLI Driver] SQL1336N The remote host "Informix_server" was not found. SQLSTATE=08001 Which source Engine in Endpoint, I need to use to connect to Informix Server?lg...

I want to be able to change the server configuration on my AWS Managed Grafana to increase the maximum login lifetime duration but cannot find where it is. I am logged in with an Admin user and do not see the typical shield icon that let's you modify the server settings. I tried to find it through the AWS Services -> Grafana but cannot find any options there either.lg...

I am not able to to start a SageMaker notebook neither a SageMaker training job with ml.c5.xlarge (or any other instance type). I checked on "Quota Services", and I clearly have quotes for both tasks. - 1 in "applied quota value" for "ml.c5.xlarge for notebook instance usage". - 15 in "applied quota value" for "ml.c5.xlarge for training job usage". Of course I am checking in the same region I try to work: "us-east-1". I have researched for several days, and all forum suggests to ask for a limit increase. Nevertheless, I already have quota (limits) available. Nevertheless, when I try to start the Jupyter notebook, it raise the exception `The account-level service limit 'ml.c5.xlarge for notebook instance usage' is 0 Instances, with current utilization of 0 Instances and a request delta of 1 Instances. Please contact AWS support to request an increase for this limit.` It is strange because the exception says that I have a limit of 0 instances, while the quota list services says I have 1. Here's the output of the command `service-quotas list-service-quotas` ``` { "ServiceCode": "sagemaker", "ServiceName": "Amazon SageMaker", "QuotaArn": "arn:aws:servicequotas:us-east-1:631720213551:sagemaker/L-E2BB44FE", "QuotaCode": "L-E2BB44FE", "QuotaName": "ml.c5.xlarge for training job usage", "Value": 15.0, "Unit": "None", "Adjustable": true, "GlobalQuota": false }, { "ServiceCode": "sagemaker", "ServiceName": "Amazon SageMaker", "QuotaArn": "arn:aws:servicequotas:us-east-1:631720213551:sagemaker/L-39F5FD98", "QuotaCode": "L-39F5FD98", "QuotaName": "ml.c5.xlarge for notebook instance usage", "Value": 1.0, "Unit": "None", "Adjustable": true, "GlobalQuota": false, "UsageMetric": { "MetricNamespace": "AWS/Usage", "MetricName": "ResourceCount", "MetricDimensions": { "Class": "None", "Resource": "notebook-instance/ml.c5.xlarge", "Service": "SageMaker", "Type": "Resource" }, "MetricStatisticRecommendation": "Maximum" } }, ``` I strongly appreciate your help, because I have no way to open a SageMaker training job for several days. Thanks.lg...

I am trying to create a webapp that will monitor a local file and send information to a dynamodb table when a new file or folder is created. What AWS service would be best suited for this?lg...

I have been battling this for a while. The user must be able to view, edit and create API's. I have tried using the AWS Policy Generator to create the following: ``` { "Version": "2012-10-17", "Statement": [ { "Sid": "Stmtxxxxxxxxxxx", "Action": "apigateway:*", "Effect": "Allow", "Resource": "arn:aws:apigateway:us-east/*" } ] } ``` Then when testing the policy, I get that my username does not have apigateway: GET rights. What gives?lg...

Hi team, I have a Cognito user pool with 3 Groups, I want to create users inside Groups as System Administrator: - the system Admin will fill out a form about client's: given name, surname, email address + some custom attributes - when sending the form (invitation), my lambda function should create the user inside my Cognito user pool Group with all the above attributes. - the client will receive a link via email to validate the **invitation** - when the client clicks the link (custom Domain link), he validates the invitation In the SDK documentation, I found that a system Admin can add users to the Cognito group using the `adminAddUserToGroup` API call ``` var params = { GroupName: 'STRING_VALUE', /* required */ UserPoolId: 'STRING_VALUE', /* required */ Username: 'STRING_VALUE' /* required */ }; cognitoidentityserviceprovider.adminAddUserToGroup(params, function(err, data) { if (err) console.log(err, err.stack); // an error occurred else console.log(data); // successful response }); ``` but the `adminAddUserToGroup` API call, only take as params the GroupName, UserPoolId and Username ``` { "GroupName": "string", "Username": "string", "UserPoolId": "string" } ``` - how can I get my user created (with the given name, surname, email, and custom attributes...) with this call: `adminAddUserToGroup`? - the username on the params above is it the sys admin username or the user name of the client to create? - how can I validate the invitation once the client clicks the verification link? - should I create a new lambda that sends the verification link or the API call `adminAddUserToGroup` send the email to the user on our behalf? the critical part is how can the system admin create a new user (with all attributes: given name, email....), via the `adminAddUserToGroup` API call and how can I validate the invitation when the user clicks the verification link? Thank you team for your help!lg...