Not authorized to start new instances

Question

I have an EC2 instance with an IAM role attached that has the AmazonEC2FullAccess policy attached. This policy includes full access to runInstances. However, when I try run call runInstances from the instance (through the JavaScript SDK), in order to launch new instances, I get an error: ”UnauthorizedOperation: You are not authorized to perform this operation.” What is the problem here?

Accepted Answer

Hello,  
  
The 'You are not authorized to perform this operation' error should be accompanied with its related 'Encoded authorization failure message'. You can then decode the message using decodeAuthorizationMessage \[1] to see what went wrong specifically.  
  
Hope that this information helps to solve your issue.  
  
Links:  
\[1] https://docs.aws.amazon.com/AWSJavaScriptSDK/latest/AWS/STS.html#decodeAuthorizationMessage-property  
  
Regards,  
awstomas

Answer

Hi,  
Thanks for your reply. Now, I have decoded the message, using your link, and can see that an IAM permission was further needed to launch the new instances. Thanks.

Not authorized to start new instances

相关内容