我的经理为我分配了 AWS 中的 IAM 角色,我正在尝试设置 Amazon Data Pipeline。在尝试激活 PipeLine 时,我反复面临如下许可问题和授权问题。
WARNING: Error occured while validating role 'DataPipelineDefaultRole'. Error: Status Code: 403, AWS Service: AmazonIdentityManagement, AWS Request ID: fbf1935a-bcf1-11e3-82d4-cd47aac2f228, AWS Error Code: AccessDenied, AWS Error Message: User: arn:aws:sts::723751385540:assumed-role/DataPipelineDefaultRole/EDPSession is not authorized to perform: iam:ListRolePolicies on resource: role DataPipelineDefaultRole
没有错误......只有像上面那样的警告。
我的 CTO 在 AWS 访问管理器中为我分配了 super 管理员角色。然而我做不到。我们已经至少 2 周了,我们正在解决这个问题。他已向我的 IAM 授予所有 super 管理员权限和特权。
附言我遵循了“ 使用 AWS 数据管道控制台通过 CopyActivity 将 RDS 数据导出到 S3 ”教程的文档 http://docs.aws.amazon.com/datapipeline/latest/DeveloperGuide/dp-copydata-mysql-console.html
最佳答案
我遇到了同样的错误,可以在以下 AWS 文档链接中找到解决方案:http://docs.aws.amazon.com/datapipeline/latest/DeveloperGuide/dp-iam-roles.html
我引用解决问题的文字:
Update Existing IAM Roles for AWS Data Pipeline
Use the following procedure to update the
DataPipelineDefaultRoleandDataPipelineDefaultResourceRoleroles.To update your existing IAM roles using managed policies
Open the Identity and Access Management console at https://console.aws.amazon.com/iam/
Update the
DataPipelineDefaultRolerole as follows:
- In the navigation pane, click Roles, and then click the row for the
DataPipelineDefaultRolerole.- Under Permissions, click Attach Policy.
- On the Attach Policy page, click the box next to the
AWSDataPipelineRolepolicy, and then click Attach Policy.Update the
DataPipelineDefaultResourceRolerole as follows:
- In the navigation pane, click Roles, and then click the row for the
DataPipelineDefaultResourceRolerole- Under Permissions, click Attach Policy.
- On the Attach Policy page, click the box next to the
AmazonEC2RoleForDataPipelineRolepolicy, and then click Attach Policy.
我希望这有帮助!
关于amazon-web-services - 亚马逊 AWS : DataPipelineDefaultRole/EDPSession not authorized to perform iam:ListRolePolicies,我们在Stack Overflow上找到一个类似的问题: https://stackoverflow.com/questions/22742633/