1 Answer
- Newest
- Most votes
- Most comments
0
【以下的回答经过翻译处理】 你是否尝试在桶策略中明确允许用于复制的角色?像这样:
“Condition”:{
“NotIpAddress”:{
“aws:SourceIp”:“x.x.x.x”
},
“Bool”:{
“aws:ViaAWSService”:“false”
},
“ArnNotEquals”:{
“aws:PrincipalArn”:“arn:aws:iam :: <account id>:role / service-role / <role name>”
}
}
Relevant content
- asked 10 months ago
- Accepted Answerasked 2 months ago
- asked a year ago
- AWS OFFICIALUpdated 10 months ago
- AWS OFFICIALUpdated a year ago
- AWS OFFICIALUpdated 7 months ago
- AWS OFFICIALUpdated 9 months ago