堆栈内存溢出
  简体   繁体   English

AWS timestream-write 获取“调用 DescribeEndpoints 操作时发生错误 (AccessDeniedException):不允许执行此操作。”

[英]AWS timestream-write gets "An error occurred (AccessDeniedException) when calling the DescribeEndpoints operation: This operation is not allowed."

 原文  2021-03-27 01:25:25       amazon-web-services/ amazon-timestream

问题描述

I am experimenting the AWS SDK for python to access Timestream.我正在为 python 试验 AWS SDK 以访问 Timestream。 I tried their in house example code from the repository and I wrote my own code to create a database:我从存储库中尝试了他们的内部示例代码,并编写了自己的代码来创建数据库:

import boto3
from botocore.config import Config

client = boto3.client('timestream-write')

response = client.create_database(DatabaseName='test')

Both sample code and my own code got the following error:示例代码和我自己的代码都出现了以下错误:

AccessDeniedException: An error occurred (AccessDeniedException) when calling the DescribeEndpoints operation: This operation is not allowed. AccessDeniedException:调用 DescribeEndpoints 操作时发生错误(AccessDeniedException):不允许执行此操作。

I googled a bit, but I could not find any information about it.我用谷歌搜索了一下,但找不到有关它的任何信息。 Thanks!谢谢!

3 个解决方案

解决方案1
 1 已采纳  2021-03-27 08:04:36

Timestream is currently only available in a handful of regions. Timestream 目前仅在少数几个地区可用。 Make sure the boto3 region configuration set the correct region to those eligible ones.确保 boto3 区域配置将正确的区域设置为符合条件的区域。

解决方案2
 0  2021-03-27 01:58:39

The credentials that you are using to interact with Timestream should use an IAM role that has has either an AWS managed policy or a custom policy that allow you to call timestream:DescribeEndpoints.您用于与 Timestream 交互的凭证应使用 IAM 角色,该角色具有 AWS 托管策略或允许您调用 timestream:DescribeEndpoints 的自定义策略。 See this page for an example: https://docs.aws.amazon.com/timestream/latest/developerguide/security_iam_id-based-policy-examples.html有关示例,请参见此页面: https://docs.aws.amazon.com/timestream/latest/developerguide/security_iam_id-based-policy-examples.html

Assuming you configured your environment to use the AWS CLI and ran aws configure , the IAM User that is tied to those credentials should be granted timestream:DescribeEndpoints.假设您将环境配置为使用 AWS CLI 并运行aws configure ,那么与这些凭证绑定的 IAM 用户应该被授予 timestream:DescribeEndpoints。 https://docs.aws.amazon.com/cli/latest/userguide/cli-configure-quickstart.html https://docs.aws.amazon.com/cli/latest/userguide/cli-configure-quickstart.html

You may have gotten this permissions error because you are missing TableName, which is a required parameter.您可能会收到此权限错误,因为您缺少 TableName,这是一个必需的参数。 https://docs.aws.amazon.com/timestream/latest/developerguide/API_CreateTable.html https://docs.aws.amazon.com/timestream/latest/developerguide/API_CreateTable.html

解决方案3
 0  2022-04-22 09:26:16

in your iam role add this permission policy在您的 iam 角色中添加此权限策略

{
"Version": "2012-10-17",
"Statement": [
    {
        "Sid": "VisualEditor0",
        "Effect": "Allow",
        "Action": [
            "timestream:DescribeEndpoints"
        ],
        "Resource": "*"
    }
] }

DescribeEndpoints is called bt sdk in case you defined endpoints interface like this in your vpc query-cell2.timestream..amazonaws.com. DescribeEndpoints 称为 bt sdk,以防您在 vpc query-cell2.timestream..amazonaws.com 中定义这样的端点接口。

暂无
暂无

声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.

相关问题 AWS 时间流上的策略允许角色执行的操作的 AccessDeniedException - AccessDeniedException for the action that is allowed to a role by a policy on AWS timestream 调用 DescribeLaunchTemplates 操作时发生错误(UnauthorizedOperation)? - An error occurred (UnauthorizedOperation) when calling the DescribeLaunchTemplates operation? 调用 DescribeTaskDefinition 操作时发生错误(ClientException) - An error occurred (ClientException) when calling the DescribeTaskDefinition operation 调用 PutSubscriptionFilter 操作时发生错误(InvalidParameterException) - An error occurred (InvalidParameterException) when calling the PutSubscriptionFilter operation AWS S3 Boto3 Python - 调用 DeleteObject 操作时发生错误 (AccessDenied):拒绝访问 - AWS S3 Boto3 Python - An error occurred (AccessDenied) when calling the DeleteObject operation: Access Denied AWS Lambda python boto3 dynamodb 表扫描 - 调用扫描操作时发生错误(ValidationException):ExpressionAttributeNames - AWS Lambda python boto3 dynamodb table scan - An error occurred (ValidationException) when calling the Scan operation: ExpressionAttributeNames AWS SAM:调用 CreateChangeSet 操作时发生错误 (ValidationError):参数“MaxAllowedPacket”必须是数字 - AWS SAM: An error occurred (ValidationError) when calling the CreateChangeSet operation: Parameter 'MaxAllowedPacket' must be a number AWS System Manager 启动 session:调用 StartSession 操作时发生错误 (TargetNotConnected):<instance_id> 未连接</instance_id> - AWS System Manager start session: An error occurred (TargetNotConnected) when calling the StartSession operation: <instance_id> is not connected AWS Lambda:调用 GetObject 操作时发生错误 (NoSuchKey):指定的键不存在 - AWS Lambda: An error occurred (NoSuchKey) when calling the GetObject operation: The specified key does not exist AWS CLI S3 调用 HeadObject 操作时发生客户端错误 (403):禁止访问 - AWS CLI S3 A client error (403) occurred when calling the HeadObject operation: Forbidden
相关标签
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM