1 Answer
- Newest
- Most votes
- Most comments
0
It seems that the IAM user using Athena doesn't have the required permissions to access the S3 bucket that you want to query.
You can check this Access denied in Athena troubleshooting guide for detailed information.
The first section covers the permissions required by a IAM user to access the S3 buckets from Athena. As you can see in the example policy your user needs to have ListBucket and GetObject permissions for the S3 source bucket.
Here is the example policy. Fore more guidance check the troubleshooting guide.
{
"Version": "2012-10-17",
"Statement": [
{
"Effect": "Allow",
"Action": [
"s3:ListBucket"
],
"Resource": [
"arn:aws:s3:::my-athena-source-bucket"
]
},
{
"Effect": "Allow",
"Action": [
"s3:GetObject"
],
"Resource": [
"arn:aws:s3:::my-athena-source-bucket/data/*"
]
},
{
"Effect": "Allow",
"Action": [
"s3:GetBucketLocation",
"s3:GetObject",
"s3:ListBucket",
"s3:ListBucketMultipartUploads",
"s3:AbortMultipartUpload",
"s3:PutObject",
"s3:ListMultipartUploadParts"
],
"Resource": [
"arn:aws:s3:::my-athena-result-bucket",
"arn:aws:s3:::my-athena-result-bucket/*"
]
}
]
}
answered a year ago
Relevant content
- asked a year ago
- Accepted Answer
- AWS OFFICIALUpdated 3 years ago
- AWS OFFICIALUpdated a year ago
- AWS OFFICIALUpdated 3 years ago
- AWS OFFICIALUpdated 4 months ago