getting Resource handler returned message: "Access to the resource https://sqs.us-east-1.amazonaws.com/ on cloudformation

0

hi.. while trying to create a queuepolicy in cloud formation:

SQSNotificationPolicy:
    Type: AWS::SQS::QueuePolicy
    Properties:
      PolicyDocument:
        Version: '2008-10-17'
        Statement:
          - Effect: Allow
            Principal:
              AWS: "*"
            Action: SQS:SendMessage
            Resource: !GetAtt NotificationQueue.Arn
            Condition:
              ArnLike:
                aws:SourceArn: !Sub '{{resolve:ssm:${SNSTopic}}}' 
      Queues:
        - !Ref NotificationQueue

i get Resource handler returned message: "Access to the resource https://sqs.us-east-1.amazonaws.com/ is denied why?

1 Answer
0

Hi, I would start troubleshooting by checking your AWS Identity and Access Management Permissions for how you're trying to deploy the SQS Policy.

  1. Identity Policies for Deploying CloudFormation (Typically the User or Role you are using to deploy the CloudFormation)
  2. (If exists) Ensure the Queue Policy is not blocking access to deploy/update another Queue Policy.
  3. If in Organizations, that no SCPs are blocking SQS or any of the necessary permissions.
jsonc
answered 2 years ago

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Guidelines for Answering Questions

Relevant content