- Newest
- Most votes
- Most comments
Seems like the role GreengrassV2TokenExchangeRole doesn't have right permissions to grant access to IOT services (IOT Core). Please check if the role has policy attached GreengrassV2TokenExchangeRoleAccess and a trust relationship that allows credentials.iot.amazonaws.com to assume the role. The policy includes the minimum permissions for the core device.
More details can be found here: https://docs.aws.amazon.com/greengrass/v2/developerguide/device-service-role.html
Hi. The problem is the permissions that AWS_tutorial_user
has.
Please refer to here: https://docs.aws.amazon.com/greengrass/v2/developerguide/quick-installation.html#provide-installer-aws-credentials.
Provide your AWS credentials to your device so that the installer can provision the required AWS resources. For more information about the required permissions, see Minimal IAM policy for installer to provision resources.
So, to perform the Greengrass quick/automatic provisioning, the AWS CLI credentials on the device must have this minimal policy: https://docs.aws.amazon.com/greengrass/v2/developerguide/provision-minimal-iam-policy.html.
The error you're suffering indicates that your AWS_tutorial_user
user does not have iam:GetRole
permission.
Relevant content
- Accepted Answerasked 2 years ago
- Accepted Answerasked 6 months ago
- Accepted Answerasked 22 days ago
- Accepted Answerasked a year ago
- AWS OFFICIALUpdated a year ago
- AWS OFFICIALUpdated a year ago
- AWS OFFICIALUpdated 3 years ago
- AWS OFFICIALUpdated 8 months ago