Questions tagged with AWS Management Console
Content language: English
Sort by most recent
I use a hardware security key (yubikey) to log into the AWS console. The AWS console app for iPhone does not appear to support this login method. Am I just out of luck?
If I don't have anything configured in a specific region, would there be any information in that space? Or is this the default?
After an update of the AWS management console for Elastic Beanstalk last week I'm unable to update the security groups of an Elastic Beanstalk environment via the AWS management console?
I can select a security group but when I try to add another one the first selection is lost. The selected security groups aren't saved when I update the Elastic Beanstalk environment.
Hello everyone,
I think you have also experienced this problem. I deleted the google authenticator app on my old phone and didn't move the account. On my new phone, I can't get the verification code. How can I re-enable 2fa app for my root account. I looked at many articles and progressed by marking troubleshooting, but it keeps looping. As a result, how can you disable and re-enable 2fa in your root accounts without entering the console?
Best regards
I didn't understand the concept of delegating admin access to member account for certain services (Say guard duty etc.). Why is that delegation required. Generally at an enterprise level, AWS sso in management account is integrated with IDP(mostly Azure) and users/groups would be able to access the member accounts as per the permission sets and scps defined.
If I gave the security account access to particular group/user in Azure AD and restricted the access to all others, what is this concept of delegation. Can anyone help me with this.
hi team,
I have used same account details to login to the GCP cloud in the gcp account i had faced issue with the billing issue.
in the meanwhile i checked my aws account the, and for this aws account facing issue like aws account blocked.
did this issue solved within a 3 hours, because I need to submit project to manager
After closing my root account, all the IAM Users accounts including my admin IAM account are now getting an authentication error when trying to log in to the AWS console.
My plan is to terminate my root account and transfer to an Admin account without getting authentication errors from the IAM Users when they tried login, and while still being able to manage those IAM users accounts.
How can I resolve this issue?
I have securityAudit permission for a given account, I want to programmatically obtain the account alias/name for the target account? Closest I can find information is related to "Organizations" api (describe-account), but that can only be used on the target account itself (and only on root organization/delegated account). Is there any other API that I can call to get this information?
I am trying to turn on vendor metered tags, but when I navigate to the cost allocation tags page in Billing, it does not appear in the list for AWS Generated Cost Allocation Tags. How do I get it to appear in list so I can activate it? Thanks,
I am getting an error when attempting to use SAM BUILD to add code into a CloudFormation Template. Here is the message log from Cloud Trail. I verified that the user has AdministratorAccess as a permission set. Any help would be appreciated.
{
"eventVersion": "1.08",
"userIdentity": {
"type": "IAMUser",
"principalId": "######",
"arn": "arn:aws:iam::#####:user/XXXXX",
"accountId": "#####",
"accessKeyId": "######",
"userName": "XXXXXX"
},
"eventTime": "2023-03-22T17:26:19Z",
"eventSource": "serverlessrepo.amazonaws.com",
"eventName": "CreateCloudFormationTemplate",
"awsRegion": "us-east-1",
"sourceIPAddress": "######",
"userAgent": "Boto3/1.26.95 Python/3.8.8 Windows/10 Botocore/1.29.95",
"errorCode": "AccessDenied",
"requestParameters": {
"semanticVersion": "latest",
"applicationId": "#######.dkr.ecr.us-east-1.amazonaws.com%2FBATCHJOB"
},
"responseElements": {
"Access-Control-Expose-Headers": "*,Amz-Sdk-Invocation-Id,Amz-Sdk-Request,Authorization,Content-Length,Content-Type,Date,Host,x-amz-content-sha256,X-Amz-Date,X-Amz-Security-Token,X-Amz-Target,x-amz-user-agent,x-amzn-platform-id,x-amzn-trace-id",
"message": "User: arn:aws:iam::######:user/XXXXX is not authorized to perform: serverlessrepo:CreateCloudFormationTemplate on resource: ######.dkr.ecr.us-east-1.amazonaws.com/BATCHJOB"
},
"requestID": "98fb4cc7-1907-4472-a161-67fc75492d81",
"eventID": "f3688202-a889-42d1-ab56-82dfc7002cd4",
"readOnly": false,
"eventType": "AwsApiCall",
"managementEvent": true,
"recipientAccountId": "######",
"eventCategory": "Management"
}
while accessing the EC2 dashboard Iam getting "An error occurred retrieving supported platforms" error message.Could you please help me to resolve this issue
Hi,
We have been using SES for the past 4 years without any problem.
Last Saturday 19 March 2023, I created a new set of SMTP credentials to configure email sending method in Region Asia Pacific (Mumbai).
Encountered the below in Oracle Apex Mail Queue:
ORA-29279: SMTP permanent error: 535 Authentication Credentials Invalid
Upon searching and enquiring the reason, I found the policy attached - AmazonSesSendingAccess - has some Unrecognized actions .
#### Copy of the text from the page Edit AmazonSesSendingAccess is below:
Service
**Pinpoint Email**
Actions
Unrecognized actions
**IAM does not recognize one or more actions. The action name might include a typo or might be part of a previewed or custom service.**
**SendRawEmail**
Resources
All resources
Request conditions
Specify request conditions (optional)
Service
**SES v2**
Actions
Unrecognized actions
IAM does not recognize one or more actions. The action name might include a typo or might be part of a previewed or custom service.
SendRawEmail
Resources
All resources
Service
**SES**
Actions
Write
SendRawEmail
Resources
All resources
Where am I going wrong? Or Is it a problem at AWS SES, yet to be fixed?
Any help on this will be highly appreciated.
Thank you all.
Raja