Debu Shinobi
Reputation: 2582
Invoking AWS SNS using Amazon lambda from Different Accounts?
I have two AWS accounts, Account 1 has lambda, and Account 2 has an SNS which will trigger a lambda function in the same account.
Now I want to trigger the SNS in Account 2 from the lambda function in Account 1. I'm not sure how to create a trust relationship between those accounts for the respective services.
Any lead is highly appreciated.
Upvotes: 0
Views: 757
Answers (1)
Marcin
Reputation: 238877
One way to do that would be:
Account B (with SNS topic)
Add the following statement to SNS topic policy:
{
"Sid": "__console_pub_0",
"Effect": "Allow",
"Principal": {
"AWS": "<ID-ACCOUNT-A>"
},
"Action": "SNS:Publish",
"Resource": "<ARN-OF-THE-SNS-TOPIC>"
}
Account A (with lambda)
Add the following statement to lambda execution role:
{
"Version": "2012-10-17",
"Statement": [
{
"Sid": "VisualEditor0",
"Effect": "Allow",
"Action": "sns:Publish",
"Resource": "<ARN-OF-SNS-TOPIC-FROM-ACCOUNT-A>"
}
]
}
Upvotes: 1
Related Questions
- AWS SNS is not invoking Lambda through another Lambda
- AWS Lambda - Access resources (EC2) in another AWS account
- AWS Lambda triggered by PUT to s3 bucket in separate account
- Invoke Lambda using SNS from Outside Account
- Cross-account-access Lambda S3 with access key
- Lambda layer pointing to s3 bucket another account
- Error while doing AWS Lambda Cross Account integration with AWS SNS
- How to allow both account and all Lambdas to assume a role?
- Invoke AWS Lambda with Amazon SNS from Different Accounts?
- configure Amazon s3 bucket to run Lambda function created in another account