- Newest
- Most votes
- Most comments
The issue is that an explicit deny in any relevant policy will override any allow that you have (like the policy you included).
You will likely need to ask your admin about what other policies are applied to your user/group/role, as it looks like some other policy is denying the action(s) you want.
Hi,
Thanks for reaching out. I just want to echo rowanu's answer here, as mentioned, it's most likely due to another policy attached which has an explicit deny. Please see here for the policy evaluation logic -> https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_policies_evaluation-logic.html#policy-eval-denyallow
Please feel free to raise a support case with us if you are unable to find the root cause of this issue. We will be happy to help you.
Relevant content
- asked 5 years ago
- asked 3 months ago
- Accepted Answerasked 5 months ago
- How can I get data to assist in troubleshooting IAM permission access denied or unauthorized errors?AWS OFFICIALUpdated 2 years ago
- AWS OFFICIALUpdated 2 years ago
- AWS OFFICIALUpdated 2 years ago