I want to opensearch notification to Amazon sns.
This is my setting
-
creat Notification in Opensearch
-
add permission in my IAM following this page https://opensearch.org/docs/latest/observing-your-data/notifications/index/
-
send test message
I created alert in Amazon Opensearch and them sent test message
-
failed!!
this is return message
{
"event_status_list": [
{
"config_id": "{{ID}}",
"config_type": "sns",
"config_name": "test-os",
"email_recipient_status": [],
"delivery_status": {
"status_code": "424",
"status_text": "SNS service Error(403), Service status:(Client)AccessDenied:User: arn:aws:sts::832035452523:assumed-role/cp-sts-grant-role/swift-ap-northeast-2-prod-913369500992
is not authorized to perform: sts:AssumeRole on resource: arn:aws:iam::{{my account}}:user/{{my account}}"
}
}
]
}
How to resolve this problem?