Durch die Nutzung von AWS re:Post stimmt du den AWS re:Post Nutzungsbedingungen
AWS re:Postre:Post

Access Forbidden when accessing manifest.json from S3 Batch operation

0

I am trying to apply an ACL to a set of objects. For that I am trying to use the new S3 Batch operations service.

I have a manifest.json file generated by the S3 Inventory service. I have created a job that takes a role with Full S3 permissions. The bucket policy provides full S3 access for that role to the contents of the bucket and the bucket.

However, I am getting this error: Reading the manifest is forbidden: AccessDenied.

I have checked the bucket policy and the ACL for both the bucket and the object and my account is the owner of the bucket and has full access to the object. The object seems to be owned by a service account.

Themen
Speicher
Tags
Amazon Simple Storage Service
Sprache
English
profile pictureAWS
EXPERTE
Tasio
gefragt vor 5 Jahren1614 Aufrufe
1 Antwort
0
Akzeptierte Antwort

"Reading the manifest is forbidden: AccessDenied." ->Usually this happens if the s3 batch operations service was not able to assume the IAM role you assigned to the job to read the manifest and perform the operations it was configured to do. Check the trust policy of the IAM role and see whether it allows the s3 batch operations service to assume that role or not.

profile pictureAWS
EXPERTE
Tasio
beantwortet vor 5 Jahren

Du bist nicht angemeldet. Anmelden um eine Antwort zu veröffentlichen.

Eine gute Antwort beantwortet die Frage klar, gibt konstruktives Feedback und fördert die berufliche Weiterentwicklung des Fragenstellers.

Richtlinien für die Beantwortung von Fragen

Relevanter Inhalt