S3 Access Denied issue

Question

quick sight is throwing permission denied issue even after providing access to that respective S3 bucket . Below are the steps I have followed and please  find the attached screenshots for reference.

1. Created s3 buckets and placed all the tables data in parquet files
2. Created a db in AWS glue and ported tables trough crawlers
3.  tables executing in athena
4. given s3 and athena permissions in quick sight and tried to access these tables using athena as datasource

(https://repost.aws/media/postImages/original/IMdaIIJpDgSiK1ne3ig9G-6Q)
(https://repost.aws/media/postImages/original/IMKUcDGiRFQRqHzM2W-kg5aw)

Answer

Please check if you have any bucket policies restricting the same. 
You need to allow s3:GetObject in your IAM policy or S3 bucket policy. Below is an example.

```
{
    "Version": "2012-10-17",
    "Statement": [
        {
            "Effect": "Allow",
            "Action": [
                "s3:GetObject"
            ],
            "Resource": [
                "arn:aws:s3:::mybucket",
                "arn:aws:s3:::mybucket/*"
            ]
        }
    ]
}
```
How do I troubleshoot 403 Access Denied errors from Amazon S3? https://aws.amazon.com/premiumsupport/knowledge-center/s3-troubleshoot-403/?nc1=h_ls

If you still face issue after this, check CloudTrail for the corresponding API call from quicksight and you will be able to identify the hurdle.

S3 Access Denied issue

Relevant content