I cannot access via HTTP even though I have applied the IAM role.

Question

I cannot access via HTTP even though I have applied the IAM role. When I accessed localhost from within ec2 using curl, the desired html was returned. However, when I executed curl http://169.254.169.254, the following html was returned. ``` 401 - Unauthorized

401 - Unauthorized

``` I tried the following: - Installing, configuring and starting nginx - I have confirmed that the nginx settings (IP, etc.) are correct. - Security group settings - Allow port 22 from 0.0.0.0/0 - Allow port 80 from 0.0.0.0/0 - Allow port 443 from 0.0.0.0/0 - IAM role settings - AmazonEC2ReadOnlyAccess - AmazonRDSFullAccess - AmazonS3ReadOnlyAccess - EC2InstanceConnect ### Environment Platform: Amazon Linux Nginx Docker Rails

Gary Mclean · Answer

With imds v2 you have to grab an authorisation token first before you can access the metadata otherwise you will receive the 401 error.

Follow the Linux or windows example in the link

https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/instance-metadata-v2-how-it-works.html

Didier Durand · Answer

Hi,

You can only access EC2 instance metadata via CURL from the inside of the instance itself.

See https://medium.com/@radhagayathripatel/retrieving-aws-ec2-instance-metadata-using-metadata-in-scripts-251bf18dbabf

Best,

Didier

I cannot access via HTTP even though I have applied the IAM role.

Environment

Add your answer

Relevant content