Skip to content
By using AWS re:Post, you agree to the AWS re:Post Terms of Use
AWS re:Postre:Post
About re:Post

Amazon Datazone unable to add project member to project which is inside domain unit.

0

In Amazon Datazone, I am not able to add the members to project, my project is inside a Domain unit, and my IAM user is the OWNER of this project, and even my IAM user is there in the Project Membership Policy for the domain unit. My user has also the permission of adding the members "datazone:CreateProjectMembership", what is that I am missing here?

Topics
Security, Identity, & Compliance
Tags
IAM PoliciesAmazon DataZone
Language
English
asked a year ago299 views
1 Answer
0

This is tough to answer without examining the specific policies. However, here are the recommended debugging steps:

  1. Check IAM Permissions: Make sure your IAM user has all required permissions:
  • datazone:CreateProjectMembership
  • datazone:ListProjects
  • datazone:UpdateProject
  • datazone:GetProject
  • datazone:ListProjectMembers
  • datazone:GetProjectMembershipPolicy

  1. Domain Unit Membership Policy: Verify the policy configuration: { "Version": "2012-10-17", "Statement": [ { "Effect": "Allow", "Principal": { "AWS": ["arn:aws:iam::account-id:user/your-username"] }, "Action": [ "datazone:CreateProjectMembership", "datazone:ManageProject" ], "Resource": "*" } ] }

  2. Check Role Requirements:

  • Ensure you have the OWNER role in the project
  • Verify Domain Unit admin permissions
AWS
EXPERT
answered a year ago
EXPERT
reviewed a year ago

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Relevant content