我的经理为我分配了 AWS 中的 IAM 角色,我正在尝试设置 Amazon Data Pipeline。在尝试激活 PipeLine 时,我反复面临如下许可问题和授权问题。
WARNING: Error occured while validating role 'DataPipelineDefaultRole'. Error: Status Code: 403, AWS Service: AmazonIdentityManagement, AWS Request ID: fbf1935a-bcf1-11e3-82d4-cd47aac2f228, AWS Error Code: AccessDenied, AWS Error Message: User: arn:aws:sts::723751385540:assumed-role/DataPipelineDefaultRole/EDPSession is not authorized to perform: iam:ListRolePolicies on resource: role DataPipelineDefaultRole
没有错误......只有像上面那样的警告。
我的 CTO 在 AWS 访问管理器中为我分配了 super 管理员角色。然而我做不到。我们已经至少 2 周了,我们正在解决这个问题。他已向我的 IAM 授予所有 super 管理员权限和特权。
附言我遵循了“ 使用 AWS 数据管道控制台通过 CopyActivity 将 RDS 数据导出到 S3 ”教程的文档 http://docs.aws.amazon.com/datapipeline/latest/DeveloperGuide/dp-copydata-mysql-console.html
最佳答案
我遇到了同样的错误,可以在以下 AWS 文档链接中找到解决方案:http://docs.aws.amazon.com/datapipeline/latest/DeveloperGuide/dp-iam-roles.html
我引用解决问题的文字:
Update Existing IAM Roles for AWS Data Pipeline
Use the following procedure to update the
DataPipelineDefaultRole
andDataPipelineDefaultResourceRole
roles.To update your existing IAM roles using managed policies
Open the Identity and Access Management console at https://console.aws.amazon.com/iam/
Update the
DataPipelineDefaultRole
role as follows:
- In the navigation pane, click Roles, and then click the row for the
DataPipelineDefaultRole
role.- Under Permissions, click Attach Policy.
- On the Attach Policy page, click the box next to the
AWSDataPipelineRole
policy, and then click Attach Policy.Update the
DataPipelineDefaultResourceRole
role as follows:
- In the navigation pane, click Roles, and then click the row for the
DataPipelineDefaultResourceRole
role- Under Permissions, click Attach Policy.
- On the Attach Policy page, click the box next to the
AmazonEC2RoleForDataPipelineRole
policy, and then click Attach Policy.
我希望这有帮助!
关于amazon-web-services - 亚马逊 AWS : DataPipelineDefaultRole/EDPSession not authorized to perform iam:ListRolePolicies,我们在Stack Overflow上找到一个类似的问题: https://stackoverflow.com/questions/22742633/