使用AWS re:Post即您表示您同意 AWS re:Post 使用条款
AWS re:Postre:Post

ALB access logs s3 denied

0

Hi. I'm following this document: https://docs.aws.amazon.com/elasticloadbalancing/latest/application/enable-access-logging.html#attach-bucket-policy

And I have adding the policy to my s3 bucket, but when I try to add it to the ALB I get the error: Access Denied for bucket: {bucket_name}. Please check S3bucket permission

Here are the permissions I have on the s3 bucket. This is all under the same account and in us-east-1. I'm not using a prefix. What am I doing wrong?

Thanks!

{
    "Version": "2012-10-17",
    "Statement": [
        {
            "Effect": "Allow",
            "Principal": {
                "AWS": "arn:aws:iam::{account_id}:root"
            },
            "Action": "s3:PutObject",
            "Resource": "arn:aws:s3:::{bucket_name}/AWSLogs/{account_id}/*"
        }
   ]
}
主题
安全、身份和合规性
标签
AWS 身份和访问权限管理应用程序负载均衡器
语言
English
Scot
已提问 3 个月前218 查看次数
1 回答
0
已接受的回答

I think I solved my issue. I thought both account numbers were the same, I didn't notice that we have standard ones for the ELB based on location. That fixed the issue.

Scot
已回答 3 个月前

您未登录。 登录 发布回答。

一个好的回答可以清楚地解答问题和提供建设性反馈,并能促进提问者的职业发展。

回答问题的准则

相关内容