- Más nuevo
- Más votos
- Más comentarios
Hello,
The error can be returned if the trust-relationship[1] of the authenticated IAM role does not allow identities from the identity pool to assume the role. It can also be returned if you have configured Attribute-based Access Control for your Identity Pool but the trust-relationship of the IAM role does not include the permission "sts:TagSession"[2].
However, as it is confirmed that the IAM roles are correctly configured for the Identity Pool, we would require details that are non-public information, in order to pinpoint the cause of the exception being returned. As such, please open a support case with AWS using the following link: https://console.aws.amazon.com/support/home#/case/create
[1] Role trust and permissions - https://docs.aws.amazon.com/cognito/latest/developerguide/role-trust-and-permissions.html [2] Using attributes for access control policy example - https://docs.aws.amazon.com/cognito/latest/developerguide/using-attributes-for-access-control-policy-example.html
Contenido relevante
- OFICIAL DE AWSActualizada hace 3 años