Usando AWS re:Post, accetti AWS re:Post Termini di utilizzo
AWS re:Postre:Post

AccessDedied Error on trying to exec athena quey from python/boto3

0

Error details com.amazonaws.services.s3.model.AmazonS3Exception: Access Denied (Service: Amazon S3; Status Code: 403; Error Code: AccessDenied;

I'm starting a query execution in python (boto3) and checking whether it finishes. But I'm always getting a FAILED status message. On the other hand, when I check the recent queries in Athena I can see the message above. My intention is to start the query, check completion and download the result file from S3 bucket. Can anyone help? Thanks!

  • vtjean
    un anno fa

    Where is your python (boto3) code being executed? Lambda? EC2? Fargate?

Argomenti
ArchiviazioneAnalisiSicurezza, identità e conformità
Tag
Servizio di archiviazione semplice di AmazonAmazon AthenaPolitiche IAM
Lingua
English
mathdonadio
posta un anno fa242 visualizzazioni
2 Risposte
0
Risposta accettata

When calling Athena from a Lambda function, you need to ensure the Lambda function's execution role has permission to access your Amazon S3 buckets. That same logic applies to other ways you can run your code, such as Amazon EC2 or Amazon ECS, and includes both the source bucket and the destination bucket. For example, take a look at the AWS Managed Rule AmazonAthenaFullAccess below. Note that this includes actions like s3:PutObject and s3:AbortMultipartUpload that Athena may use to create temporary files, not just read actions like S3:GetObject or S3:ListBucket.

Relevant Links:

AWS
David
con risposta un anno fa
profile picture
ESPERTO
Gary Mclean
verificato un mese fa
0

Thanks! It was a matter of adding the right permissions to the user's role.

mathdonadio
con risposta un anno fa

Accesso non effettuato. Accedi per postare una risposta.

Una buona risposta soddisfa chiaramente la domanda, fornisce un feedback costruttivo e incoraggia la crescita professionale del richiedente.

Linee guida per rispondere alle domande

Contenuto pertinente