Hi there,
I am following the steps in the aws managed blockchain and I have a problem at step 5.1(https://docs.aws.amazon.com/managed-blockchain/latest/hyperledger-fabric-dev/get-started-enroll-admin.html). When I run this command:
aws s3 cp s3://MyRegion.managedblockchain/etc/managedblockchain-tls-chain.pem /home/ec2-user/managedblockchain-tls-chain.pem
I get the following error:
fatal error: An error occurred (403) when calling the HeadObject operation: Forbidden
Like the guide mentioned, I went to this link(https://docs.aws.amazon.com/managed-blockchain/latest/hyperledger-fabric-dev/security_iam_hyperledger_ec2_client.html) and followed the steps. However, even after these steps I keep getting the same error.
Any guidance or suggestions would be greatly appreciated!
Hello
The issue is with the IAM Role attached to the Ec2 instance, So please check the Role policy again, I have looked the URL you have mentioned.
Please recheck the following:
"arn:aws:s3:::us-east-1.managedblockchain/*"
{ "Sid": "AccessManagedBlockchainBucket", "Effect": "Allow", "Action": [ "s3:GetObject" ], "Resource": "arn:aws:s3:::REGION_NAME.BUCKET_NAME/*" },
if the policy is correct you shold able to get the file in Ec2.
Please let me know if you have troubles again, I am happy to help you
GK
Thank you for your response GK! I checked the policy and the correct value is already there. Unfortunately, something else must be causing the issue.
You are not logged in. Log in to post an answer.
A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.
Thank you for your response GK! I checked the policy and the correct value is already there. Unfortunately, something else must be causing the issue.