Eric
Reputation: 303
Access Denied. Not Authorized to perform : ec2: DescribeSubnets
When create an EMR cluster, got this error
The user has the ec2: DescribeSubnets permission in a policy as below. What would be root cause?
{
“Sid”: “AllowOperateClusters”,
“Effect”: “Allow”,
“Action”: [
“elasticmapreduce:RunJobFlow”,
“elasticmapreduce:DescribeCluster”,
“elasticmapreduce:ListClusters”,
“elasticmapreduce:ListBootstrapActions”,
“elasticmapreduce:ListSteps”,
“elasticmapreduce:ListInstanceGroups”,
“elasticmapreduce:OpenEditorInConsole”,
“elasticmapreduce:ListEditors”,
“ec2:DescribeAccountAttributes”,
“ec2:DescribeVpcs”,
“ec2:DescribeAvailabilityZones”,
“ec2:DescribeSubnets”
],
“Resource”: “*”
}
Upvotes: 0
Views: 4853
Answers (1)
Eric
Reputation: 303
It works after granting the below permissions.
ec2:DescribeNetworkAcls
ec2:DescribeRouteTables
Upvotes: 1
Related Questions
- AWS EC2 'You are not authorized to perform this operation. Encoded authorization failure message:'
- ERROR: NotAuthorizedError - Operation Denied on AWS eb init
- Invalid policy role JSON
- AWS ECR user is not authorized to perform: ecr-public:GetAuthorizationToken on resource: *
- AWS EMR terminated with validation error - security group error
- IAM role fails to give permission to an EC2 instance
- not authorized to perform: aws-marketplace:ViewSubscriptions on resource: *
- AWS EC2 Permission denied
- Launching EC Instance :: A client error (UnauthorizedOperation) occurred when calling the RunInstances operation
- Amazon EC2 access denied