AWS CLI Error when listing eks cluster as well as s3 bucket even though having administrator permission.

Question

We are facing an issue with AWS CLI operations for EKS  as An error occurred (AccessDeniedException) when calling the DescribeCluster operation: User: arn:aws:iam:: is not authorized to perform: eks:DescribeCluster on resource: arn:aws:eks:ap-south-1:cluster/Mycluster with an explicit deny

Answer

Hello.

Since it says "with an explicit deny", aren't you setting a Deny statement in the IAM policy, or denying access in the bucket policy if it's S3?  
https://docs.aws.amazon.com/IAM/latest/UserGuide/troubleshoot_access-denied.html#access-denied-error-examples

Also, if you use "eks:DescribeCluster", you may be able to see a more detailed message from the CloudTrail event history.  
https://docs.aws.amazon.com/awscloudtrail/latest/userguide/view-cloudtrail-events.html

AWS CLI Error when listing eks cluster as well as s3 bucket even though having administrator permission.

相关内容