Getting "User: anonymous is not authorized to perform: es:ESHttpGet because no resource-based policy allows the es:ESHttpGet action"

Question

Our websites have stopped working and we are getting the following error when we browse to them.

"Message": "User: anonymous is not authorized to perform: es:ESHttpGet because no resource-based policy allows the es:ESHttpGet action"

The server is "LightSail" .... Windows Server 2016 with a database
The sites are ASP.Net running on IIS

What other info can I provide?  I am new AWS and don't know how to fix this?

Thank you!

Answer

Hello,

One possible reason why this might happen is because you making an anonymous request to the service, and the service does not allow it. However, most likely, the reason is that, as stated in the error message, you do not have a resource policy that allows this API call to happen. To resolve this error, you can try to make a resource policy and attach it to the Lightsail service.

{
  "Version": "2012-10-17",
  "Statement": [
    {
      "Effect": "Allow",
      "Principal": {
        "AWS": "*"
      },
      "Action": "es:*",
      "Resource": "arn:aws:es:us-east-1:xxxxxx:domain/xxxxx/*"
    }
  ]
}

Please make sure to adjust the policy to your needs and security standards.

Getting "User: anonymous is not authorized to perform: es:ESHttpGet because no resource-based policy allows the es:ESHttpGet action"

Relevant content