Problem to set event destination of Amazon SES using Kinesis Firehose

0

I created the role needed to connect the services but i'm getting these two errors:

  • Could not access Kinesis Firehose Stream using IAM role
  • Could not assume IAM role

Permission Policy:

{
    "Version": "2012-10-17",
    "Statement": [
        {
            "Sid": "",
            "Effect": "Allow",
            "Action": [
                "*"
            ],
            "Resource": [
                 "arn:aws:firehose:delivery-region:111122223333:deliverystream/delivery-stream-name"
            ]
        }
    ]
}

Trust Policy:

{
  "Version": "2012-10-17",
  "Statement": [
    {
      "Sid": "",
      "Effect": "Allow",
      "Principal": {
        "Service": "ses.amazonaws.com"
      },
      "Action": "sts:AssumeRole",
      "Condition": {
        "StringEquals": {
          "AWS:SourceAccount": "111122223333",
          "AWS:SourceArn": "arn:aws:ses:delivery-region:111122223333:configuration-set/configuration-set-name"
        }
      }
    }
  ]
}

Link that i used to guide me:

Can someone help me ?

  • Can you share the trust and permission policies of your role ?

  • New informations added

1 Risposta
0

I know this may sound stupid and you should not share your account id or resources names here, but have you actually changed the placeholders that are in the policy ?

Enter image description here Enter image description here

If you did, have you checked if it is correct ?

The trust policy defines "who" can assume the role, attaching a role to a resource just tells it must assume that role.

If this does not solve your problem or still have any question please let me know.

con risposta un anno fa

Accesso non effettuato. Accedi per postare una risposta.

Una buona risposta soddisfa chiaramente la domanda, fornisce un feedback costruttivo e incoraggia la crescita professionale del richiedente.

Linee guida per rispondere alle domande