2개 답변
- 최신
- 최다 투표
- 가장 많은 댓글
0
Just a stab. Is there a typo in the ARN, missing the slash?
"Resource": "arn:aws:s3:::my-bucket*",
Should be:
"Resource": "arn:aws:s3:::my-bucket/*",
0
Thanks,
That full policy is actually a copy/paste when you lock it down in CloudFront. There is a simple button that says to copy the policy, and I did check and that is correct under resource;
"Resource": "arn:aws:s3:::mybucket/*",
I may have messed up when I renamed to post, but good thought. I have 4 identical buckets, I marked 2 as resolved and they are no longer showing in the security hub listing, but the other 2 still show (and say last seen an hour ago), so I am wondering if I really just need to mark them (that would be terrible), but going to test that now.
Will advise
답변함 3달 전
관련 콘텐츠
- AWS 공식업데이트됨 2년 전