getting security token included in the request is invalid error while enabling Security Lake on console
Hi Team, i was trying recently launched security lake, I followed the steps mentioned in the following link,
https://docs.aws.amazon.com/security-lake/latest/userguide/getting-started.html#enable-service
I am currently using this service for only one account and only one region. i have created admin IAM user and through that I am working. i have created a role "AmazonSecurityLakeMetaStoreManager" and attached policy and sts as mentioned in
https://docs.aws.amazon.com/security-lake/latest/userguide/manage-regions.html#iam-role-partitions
also i have added this role as Data lake administrator in lake formation
i am getting this error when i am trying to enable security lake through AWS console
Any help is appreciable.. Thanks in advance.
- Newest
- Most votes
- Most comments
It seems that this error message is invalid. I had the same issue and managed to work around the problem via CLI (CloudShell). By executing the command:
aws securitylake create-datalake --enable-all --meta-store-manager-role-arn <my_role_arn>
I got a new error message:
An error occurred (ValidationException) when calling the CreateDatalake operation: Failed to validate the role provided. Role's trust policy does not contain trusted entity required.. This helped me to the problems I had with the role (I didn't have the proper trust relationships set in Role settings).
Hope that this helps!
Relevant content
- asked 4 months ago
- asked 2 years ago
- Accepted Answerasked 6 months ago
AWS OFFICIALUpdated a year ago
Thanks for way around, i guess its due to its Beta version, they are still working on it. i have resolved it