堆栈内存溢出
  简体   繁体   English

调用 UpdateUserPool 操作时发生错误 (NotAuthorizedException)

[英]An error occurred (NotAuthorizedException) when calling the UpdateUserPool operation

 原文  2021-07-16 13:16:41       amazon-web-services/ amazon-cognito/ amazon-kms/ aws-policies

问题描述

An error occurred (NotAuthorizedException) when calling the UpdateUserPool operation: Caller needs to have kms:CreateGrant permission on provided KMS Key调用 UpdateUserPool 操作时发生错误 (NotAuthorizedException):调用方需要对提供的 KMS 密钥具有 kms:CreateGrant 权限

aws cognito-idp update-user-pool --user-pool-id {user_pool_id} --lambda-config "CustomEmailSender={LambdaVersion=V1_0,LambdaArn= lambda-arn },KMSKeyID=key-arn"

docs 文档

1 个解决方案

解决方案1
 0  2021-07-21 13:08:37

There is likely one of two issues going on:可能存在以下两个问题之一:

  1. You have the default KMS Key policy applied to the key-arn KMS key, but have not assigned kms:CreateGrant permission to an IAM policy applied to the user/principal running that command.您已将默认 KMS 密钥策略应用于key-arn KMS 密钥,但尚未向应用于运行该命令的用户/委托人的 IAM 策略分配kms:CreateGrant权限。
  2. You have not applied kms:CreateGrant permission for the principal running the command in the KMS key policy for the key-arn KMS key.您尚未为运行该命令的主体应用kms:CreateGrant权限,该权限在key-arn KMS 密钥的 KMS 密钥策略中运行。

暂无
暂无

声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.

相关问题 调用CreateStack操作时发生错误(AccessDenied): - An error occurred (AccessDenied) when calling the CreateStack operation: 调用 CreateBucket 操作时发生错误(IllegalLocationConstraintException) - An error occurred (IllegalLocationConstraintException) when calling the CreateBucket operation 调用 PutSubscriptionFilter 操作时发生错误(InvalidParameterException) - An error occurred (InvalidParameterException) when calling the PutSubscriptionFilter operation 调用 AssumeRole 操作时发生错误 (AccessDenied) - An error occurred (AccessDenied) when calling the AssumeRole operation 调用 AttachVolume 操作时发生错误 (VolumeInUse) - Error (VolumeInUse) occurred when calling the AttachVolume operation Aws ses 错误:调用 SendBulkTemplatedEmail 操作时发生错误 (InvalidParameterValue) - Aws ses error: An error occurred (InvalidParameterValue) when calling the SendBulkTemplatedEmail operation 接收错误“调用 GetAuthorizationToken 操作时发生错误 (AccessDeniedException)” - Receiving Error "An error occurred (AccessDeniedException) when calling the GetAuthorizationToken operation" 调用StartInstances操作时发生客户端错误(UnauthorizedOperation) - A client error (UnauthorizedOperation) occurred when calling the StartInstances operation 调用PutObject操作时发生错误(AccessDenied):访问被拒绝 - An error occurred (AccessDenied) when calling the PutObject operation: Access Denied 调用 DeleteBucket 操作时发生错误 (AccessDenied):拒绝访问 - An error occurred (AccessDenied) when calling the DeleteBucket operation: Access Denied
相关标签
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM