Mr. Annonymous
Reputation: 87
Cannot delete entity, must remove tokens from principal first
while trying to delete aws user from AWS Java SDK. i am getting following error:
Cannot delete entity, must remove tokens from principal first.
the relevant code snippet is:
DeleteUserRequest deleteUserRequest = DeleteUserRequest.builder().userName(userName).build();
iam.deleteUser(deleteUserRequest);
Upvotes: 3
Views: 4374
Answers (1)
Jonathan Petitcolas
Reputation: 4584
I faced the same issue with Terraform. The user had some access tokens and MFA devices configured on their account. They have created it manually, hence, Terraform didn't know about that. So, it was not able to delete the user due to the exact same error.
Deleting the MFA tokens and the manually generated access tokens fixed the issue.
Perhaps can you automate it with Java?
Upvotes: 9
Related Questions
- AWS cannot delete RestApi
- The IAM role arn:aws:iam::XXXXXXXXXXXX:role/XXXXXXXXXXXX isn't authorized to call s3:DeleteObject on the S3 bucket XXXXXXXXXXXX-XXXX-XXXX
- Cannot delete old AWS IAM Role
- How to remove assumed IAM role from local
- Cannot delete entity, must delete login profile first
- Unable to deactivate or delete aws iam mfa device
- When trying to delete a user I'm getting "You do not have the permission required to perform this operation" on my AWS Educate Account?
- Amazon Web Service can't delete an Elastic Beanstalk environment
- Deleting cognito user & identity has no affect on user access
- How do I delete an AWS resource by ARN?