使用 AWS re:Post 即表示您同意 AWS re:Post 使用條款
AWS re:Postre:Post

ALB access logs s3 denied

0

Hi. I'm following this document: https://docs.aws.amazon.com/elasticloadbalancing/latest/application/enable-access-logging.html#attach-bucket-policy

And I have adding the policy to my s3 bucket, but when I try to add it to the ALB I get the error: Access Denied for bucket: {bucket_name}. Please check S3bucket permission

Here are the permissions I have on the s3 bucket. This is all under the same account and in us-east-1. I'm not using a prefix. What am I doing wrong?

Thanks!

{
    "Version": "2012-10-17",
    "Statement": [
        {
            "Effect": "Allow",
            "Principal": {
                "AWS": "arn:aws:iam::{account_id}:root"
            },
            "Action": "s3:PutObject",
            "Resource": "arn:aws:s3:::{bucket_name}/AWSLogs/{account_id}/*"
        }
   ]
}
主題
安全性、身分識別與合規
標籤
AWS Identity and Access ManagementApplication Load Balancer
語言
English
Scot
已提問 3 個月前檢視次數 217 次
1 個回答
0
已接受的答案

I think I solved my issue. I thought both account numbers were the same, I didn't notice that we have standard ones for the ELB based on location. That fixed the issue.

Scot
已回答 3 個月前

您尚未登入。 登入 去張貼答案。

一個好的回答可以清楚地回答問題並提供建設性的意見回饋,同時有助於提問者的專業成長。

回答問題指南

相關內容