Explore how you can quickly prepare for, respond to, and recover from security events. Learn more.
All Content tagged with IAM Policies
You manage access in AWS by creating policies and attaching them to IAM identities (users, groups of users, or roles) or AWS resources.
Content language: English
Select up to 5 tags to filter
Sort by most recent
1487 results
I have setup this policy, and while the session works, the condition isn't restricting to that one host. Using the policy generator,
I found I had to add the sts:getcalleridentity, but the policy gene...
I have created workspaces using CLI, all the prerequisite steps (networking, directory creation, registering directory etc) were also done using CLI. After the creation of workspace, user doesn't rece...
I'm trying to query Athena using cross-account access from ECS and getting the following error:
> Insufficient permissions to execute the query. User: arn:aws:sts::123456:assumed-role/foo-athena/foo-...
Hello community,
I am baffled by the following message from the Query Editor
> You don't have permission to view the scheduled query history. To view, add sts:AssumeRole for IAM role to your IAM ro...
Hi team,
I created a SageMaker Ground Truth labeling job and want to ensure **it is secure**. I followed this article: [Run an Amazon SageMaker Ground Truth Labeling Job in an Amazon Virtual Private ...
Hi team,
I'm trying to create a knowledge base using AWS CDK by following guidelines from:
- [https://docs.aws.amazon.com/bedrock/latest/userguide/kb-permissions.html](https://docs.aws.amazon.com/bedr...
Hello,
When I try to use an IoT publish function from my new Lambda's I keep getting an error:
*** "ERROR ClientError: An error occurred (ForbiddenException) when calling the Publish operation: None...
Hi, Im trying to create manual snapshots from my Opensearch cluster. I followed the procedure in [documentation](https://docs.aws.amazon.com/opensearch-service/latest/developerguide/managedomains-snap...
How can I add predefined IAM roles for multiple Lambdas?
I am encountering the following error:
error:
LimitExceeded: Cannot exceed quota for RolesPerAccount: 1000
at Request.extractError (/ro...
Hi all,
"error": "An error occured (AccessDeniedException) when calling the DetectDocumentText operation: User: arn:aws~1:iam:{accountId}:user/{myEmail}.com is not authorized to perform:textract:Detec...
I have a codebuild project in the account "A" in region "A"
I need to snyc files to another bucket in the account "B" on region "B"
The s3 bucket has "Block all public access" ON and the following po...
Issue:
We are using **GuestUser **login in our application, and we've created an **IAM-based schema**. The schema is attached below for reference. However, when attempting to query the table using IAM...