作者:拍友2602924913 | 来源:互联网 | 2023-10-14 11:20
Terraform Version
Terraform v0.10.6
Affected Resource(s)
Please list the resources as a list, for example:
- aws_efs_file_system
- aws_efs_mount_target
Terraform Configuration Files
1
2
3
4
5
6
7
8
9
10
11
12
13
| resource "aws_efs_file_system" "fgw-shared-filesystem"
{
tags
{
"Name" = "fgw-cs-${var.codesplitt}-shared-filesystem-regression"
}
}
resource "aws_efs_mount_target" "fgw-shared-filesystem-moun-target"
{
file_system_id = "${aws_efs_file_system.fgw-shared-filesystem.id}"
subnet_id = "subnet-ca9dcca2"
security_groups = ["sg-0b30c561"]
} |
Expected Behavior
Mount target should be created.
Actual Behavior
Mount target is not created and i don't get a clear reason which permission is missing !
1
2
3
4
5
6
| 1 error(s) occurred:
* aws_efs_mount_target.fgw-shared-filesystem-moun-target: 1 error(s) occurred:
* aws_efs_mount_target.fgw-shared-filesystem-moun-target: AccessDeniedException: User is not authorized to perform that action on the specified resource
status code: 403, request id: 35027496-9f9b-11e7-b53e-45fe21728a81 |
Steps to Reproduce
Important Factoids
The used policy is the following. I granted full access to EFS, but it still not working:
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
| {
"Version": "2012-10-17",
"Statement": [
{
"Sid": "Stmt1504192188000",
"Effect": "Allow",
"Action": [
"ec2:*",
"route53:*",
"rds:*",
"elasticfilesystem:*"
],
"Resource": [
"*"
]
}
]
} |
该提问来源于开源项目:hashicorp/terraform-provider-aws
I'm going to lock this issue because it has been closed for 30 days ⏳. This helps our maintainers find and focus on the active issues.
If you feel this issue should be reopened, we encourage creating a new issue linking back to this one for added context. Thanks!
京公网安备 11010802041100号