Bryce York
Reputation: 1056
Why does the AWS cli reject my IAM ARN for not matching the regex/pattern?
I'm trying in a number of different ways to push my .zip to AWS Lambda. All of the methods I've tried (grunt, gulp, and cli) are throwing an error despite having copied my ARN straight from the IAM console.
I'm running the following in the CLI
aws lambda create-function --function-name myFunctionName --runtime nodejs4.3 --role="arn:aws:iam::848602986150:user/lambda" --handler index.handler --zip-file fileb://./path/to/my.zip
and receiving this error:
A client error (ValidationException) occurred when calling the CreateFunction operation: 1 validation error detected: Value 'arn:aws:iam::848602986150:user/lambda' at 'role' failed to satisfy constraint: Member must satisfy regular expression pattern: arn:aws:iam::\d{12}:role/?[a-zA-Z_0-9+=,.@\-_/]+
Anyone know what I'm doing wrong?
Upvotes: 7
Views: 18445
Answers (1)
Vor
Reputation: 35149
You have to create and pass IAM Role not IAM User
From the docs:
--role :
Services (AWS) resources. The Amazon Resource Name (ARN) of the IAM role that Lambda assumes when it executes your function to access any other Amazon Web
Upvotes: 16
Related Questions
- kubectl error You must be logged in to the server (Unauthorized) when accessing EKS cluster
- The role defined for the function cannot be assumed by Lambda
- Set IAM role to run AWS CLI Python subprocess in AWS Lambda
- AWS cli: not authorized to perform: sts:AssumeRole on resource
- Does AWS Lambda get-layer-version not work for cross-accounts?
- How to attach a managed policy to a lambda function in serverless framework
- Run lambda function with localstack
- how can i create the aws java lambda function from aws cli by ignoring unused resources?
- How to attach policy to a role while creating an AWS lambda function in nodejs in AWS CLI? Facing error while attaching role