Saltar al contenido
Al usar AWS re:Post, aceptas las AWS re:Post Términos de uso
AWS re:Postre:Post
Acerca de re:Post

Usuario root no puede crear Glue Crawlers - AccessDeniedException a nivel de cuenta

0

Agradecería su asistencia para resolver esta restricción.

Etiquetas
Soporte de la cuenta
Idioma
Español
preguntada hace 2 meses56 visualizaciones
1 Respuesta
0

Based on the information you've provided, it appears that your AWS account (256883135516) is experiencing a service-level restriction that's preventing even the root user from creating AWS Glue Crawlers and Jobs, despite having all the necessary IAM permissions and configurations in place.

The error message "Account 256883135516 is denied access" combined with the fact that the operation is being blocked before IAM evaluation (as indicated by the null responseElements in CloudTrail) strongly suggests this is an account-level restriction rather than a permissions issue.

Since you've already verified that:

  • No Service Control Policies (SCPs) are applied to the account
  • The root user has MFA enabled and proper authentication
  • The IAM roles have the correct trust policies and permissions
  • The account is active with billing in good standing
  • Service quotas are not exceeded
  • The issue persists across multiple regions

This appears to be a problem that requires AWS Support intervention. When an account-level restriction is preventing access to a service, even for the root user, it typically indicates one of the following:

  1. There might be an internal AWS restriction on the account for the Glue service
  2. There could be an issue related to how the account was set up within your organization
  3. There might be a service-specific limitation that was applied to your account

The recommended course of action is to open a case with AWS Support under the "Account and billing" category. This type of inquiry can be made free of charge, even without a support plan. AWS Support will be able to investigate any account-level restrictions that might be preventing you from using Glue services and provide a resolution.

When opening the case, include all the information you've provided here, especially the CloudTrail event details and the troubleshooting steps you've already taken, as this will help expedite the resolution process.
Sources
Root User Is Denied Access While Creating Glue Crawler and IAM Glue ETL | AWS re:Post
Unable to save in gluestudio: | AWS re:Post
Criar um crawler | AWS re:Post
AWS Glue Crawler | AWS re:Post

respondido hace 2 meses
EXPERTO
revisado hace 2 meses

No has iniciado sesión. Iniciar sesión para publicar una respuesta.

Una buena respuesta responde claramente a la pregunta, proporciona comentarios constructivos y fomenta el crecimiento profesional en la persona que hace la pregunta.

Contenido relevante