How to put records into a kinesis stream in another AWS account?


Is it possible to put records into a kinesis stream located in another AWS account?

I configured my kinesis producer with an STS assumed role, but I can't see how to specify a stream name in another account (it doesn't accept an ARN, only a stream name).

Init logic:

            AWSCredentialsProviderChain credentialsProvider = new AWSCredentialsProviderChain(
                    new STSAssumeRoleSessionCredentialsProvider.Builder(

            Properties props = new Properties();
            KinesisProducerConfiguration producerConfig = KinesisProducerConfiguration.fromProperties(props)

            if (!Strings.isNullOrEmpty(config.getKinesisStreamRegion())) {

            return new KinesisProducer(producerConfig);

and the error:

Encountered AWSError
Stream my-stream under account 111111111111 not found.:

(where 111111111111 is the other aws account)

1 Respuesta

Figured it out; I was creating a AWSCredentialsProviderChain, and including the DefaultAWSCredentialsProviderChain first in the constructor. When I changed the order to include the STSAssumeRoleSessionCredentialsProvider first, it was then able to find the stream in the other AWS account successfully.

respondido hace 5 años

