By using AWS re:Post, you agree to the AWS re:Post Terms of Use

"Network failure" when trying to set up Macie discovery results bucket in eu-west-1

0

I have successfully configured Macie in us-west-2, but when I try to set up the "repository for sensitive data discovery results" in eu-west-1, as soon as I select the bucket from the "Choose a bucket" dropdown, I get a big red error bar at the top of the screen that says "listKeysForService: Network failure". At the bottom, a red error box appears that says: "listAllKeysForService: Cannot read properties of undefined (reading 'filter')"

If I paste in the KMS key arn into the textbox and hit "Save", I get an error at the bottom:

"putClassificationExportConfiguration: An internal issue occurred when we tried to run the operation. Verify your export configuration settings, and then try again."

I've gone through the documentation here: https://docs.aws.amazon.com/macie/latest/user/discovery-results-repository-s3.html and I think I've done everything right.

Any thoughts? This seems like an AWS Management Console bug for Macie since it only affects one region.

(NOTE: I found this post but it's not the same error I'm getting and I have full permissions on my AWS IAM user account)

2 Answers
0

Hi cmyers, I just tried to perform from the console the same configuration, using the steps you outlined from the doc, in eu-west-1, and I was able to complete it successfully.

However, I noticed different behavior when selecting to use an existing bucket rather than to have Macie to create a new one.

I'm not sure it fits your needs, but, have you tried the same setup but having Macie to create a brand new S3 Bucket ?

Chris

profile pictureAWS
answered 9 months ago
  • That worked! Weird, I wonder what it is about this bucket in this region that prevents it? I compared the bucket policy to the other bucket in the other region that worked and they're the same except for regions.

0

I agree, weird behavior, if you have the chance, might be worth to open a a Case for our Support folks.

profile pictureAWS
answered 9 months ago

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Guidelines for Answering Questions