By using AWS re:Post, you agree to the AWS re:Post Terms of Use
AWS re:Postre:Post

Redshift Serverless 'ContainerStateException' when accessing Query V2 via IAM Identity Center

0

Hello :)

I am trying to use Redshift Query Editor V2 authenticating via IAM Identity Center. These were my setup steps:

  • Created IAM Identity Center in the same region of the Serverless Workgroup
  • Created a Serverless Redshift instance (note I tried both private and publicly accessible workgroup, also being deployed on public subnets)
  • Create IAM Identity Center Application via the Redshift console
  • Enabled Query editor v2 application
  • Added the IAM IdC group containing my user (which is a group that has Administrator privilieges, therefore it is not a credentials limitation issue)

When I try to login I get this error on the QEV2 console: Databases couldn't be listed.. However upon further investigation on Cloudtrail I can see these details on the event:

"errorCode": "InternalServerErrorException",
    "requestParameters": {
        "path": "/cluster/connect/",
        "data": "***",
        "version": "1.001"
    },
    "responseElements": {
        "result": false,
        "code": "ContainerStateException",
        "error": "Cannot get container for user AROAYWI5C7KHET6MY5CL5:<USERNAME>",
        "message": "Cannot get container for user AROAYWI5C7KHET6MY5CL5:<USERNAME>"
    },

I couldn't find anything in the documentation about this error. Any help of what I might have messed up in the setup or elsewhere is much appreciated.

Topics
Security, Identity, & ComplianceAnalytics
Tags
AWS IAM Identity CenterAmazon Redshift Serverless
Language
English
ET
asked 2 months ago50 views
No Answers

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Guidelines for Answering Questions

Relevant content