[英]AWS ECR user is not authorized to perform: ecr-public:GetAuthorizationToken on resource: *
嘗試檢索身份驗證令牌並向您的注冊表驗證您的 Docker 客戶端時,我遇到了以下問題:
user is not authorized to perform: ecr-public:GetAuthorizationToken on resource: *
我能夠毫無問題地將圖像推送到我的私人存儲庫。 我正在使用 EC2 ubuntu 圖像來執行 AWS 儀表板中的這些推送命令。 我確保用戶具有角色: AmazonEC2ContainerRegistryFullAccess
我發現以下角色可以工作。 確保將這些策略附加到 IAM 中的組或用戶:
私有注冊表: AmazonEC2ContainerRegistryFullAccess
公共注冊表: AmazonElasticContainerRegistryPublicFullAccess
根據ECR Public docs ,IAM 委托人需要以下兩個操作來調用GetAuthorizationToken :
ecr-public:GetAuthorizationTokensts:GetServiceBearerToken
未授權執行:ecr:GetAuthorizationToken on resource: * 因為沒有基於身份的策略允許 ecr:GetAuthorizationToken
[英]Not authorized to perform: ecr:GetAuthorizationToken on resource: * because no identity-based policy allows the ecr:GetAuthorizationToken
沒有授權AWS SageMaker執行:資源上的ecr:CreateRepository:*
[英]AWS SageMaker is not authorized to perform: ecr:CreateRepository on resource: *
在本地調用 `aws ecr-public get-login-password` 時出錯
[英]Getting error when calling `aws ecr-public get-login-password` locally
我在 AWS 中添加了哪些權限以啟用 ecr:getAuthorizationToken?
[英]What permissions do I add in AWS to enable ecr:getAuthorizationToken?
AWS:AccessDeniedException:用戶:{user} 無權執行:quicksight:ListDashboards on resource
[英]AWS: AccessDeniedException: User: {user} is not authorized to perform: quicksight:ListDashboards on resource
聲明:本站的技術帖子網頁,遵循CC BY-SA 4.0協議,如果您需要轉載,請注明本站網址或者原文地址。任何問題請咨詢:yoyou2525@163.com.