As I understand it you are having difficulty following the the Apache Superset reference deployment found here https://aws.amazon.com/quickstart/architecture/apache-superset/ You say you are getting the AccessDenied error. User doesn't have permission to call ec2:DescribeAvailabilityZones. error when attempting to deploy to CloudFormation.
I tried recreating your situation by creating a user in a user group with AdministratorAccess permissions. I went through the apache-superset guide you linked and did not run into the ec2:DescribeAvailabilityZones accessed denied error.
- Could you confirm that you are logged in on a user whose user group has AdministratorAccess permissions. You can use the command 'aws sts get-caller-identity' to get details on your IAM User or Role.
- Could you confirm what step of the apache-superset guide you are experiencing this error?
- Could you check if your AWS account is under AWS Organizations. If this is the case, there could be a Service Control Policy (SCP) that is preventing you access to ec2:DescribeAvailabilityZones. You can read more about SCPs here https://docs.aws.amazon.com/organizations/latest/userguide/orgs_manage_policies_scps.html
You can read more about IAM permission access here https://aws.amazon.com/premiumsupport/knowledge-center/troubleshoot-iam-permission-errors/
Also, it is recommended that you include any command outputs in a support ticket instead of here to keep your information secure. re:Post is a public platform and it is best to keep any information that could expose the architecture of your account in a more private setting like a support ticket.
I hope I could help, if you are still having problems you may need to open a support ticket.
I am trying to log in through the Cognito hosted UI. I don't see such a function in the example, what should I do?Accepted Answerasked 5 months ago
How do I see the posts I am following?asked 8 months ago
i have 1 instances and i am using application load balancerasked 2 months ago
Cognito groups- allow admin group to remove a user from a Cognito groupasked 4 months ago
Where is "AdministratorAccess" among the permission policies for my AWS IAM initial setup?Accepted Answerasked 6 months ago
How do I obtain permission to execute "delete-suppressed-destination"?asked 3 years ago
I am not able to stop or terminate the serverasked 5 months ago
Why am I not able to create alerts and set alert thresholds?asked 4 months ago
I am unable to delete my AWS Amplify projectasked 6 months ago
How do I grant DescribeAvailabilityZones permission to an Admin?asked 7 months ago