How do I resolve a 402 status error in IAM Identity Center?

2 minute read
0

I want to assign a permission set to an AWS account in IAM Identity Center. I get an error message similar to: "Received a 402 status error: Number of attached policies to role...has exceeded the IAM limit."

Short description

The 402 status error in IAM Identity Center occurs when you assign a permission set to a target AWS account with more than ten policies attached. For more information, see Manage AWS accounts with permission sets. To increase the number of managed policies per role, request a service quota increase.

Resolution

To request a service quota increase, see Requesting a quota increase. In your request, show an increase in the Managed policies per role resource. For more information, see IAM object quotas.

Note: You must request an increase to the IAM quota for all target accounts to attach the permission set. To assign the permission set to multiple accounts, increase the Managed policies per role resource in all accounts.

After you increase the service quota limit in the target account, add additional policies to a maximum of 20. Then, provision the updated permission set to target the account from the IAM Identity Center console.

Related information

Single sign-on access to AWS accounts

Troubleshooting IAM Identity Center issues

AWS OFFICIAL
AWS OFFICIALUpdated 19 days ago