DX Unified Infrastructure Management

  • Private Community
 View Only

  • 1.  Error in aws probe

    Posted Jun 08, 2021 07:22 PM
    Hi everyone.
    I am configuring aws probe, but isn't working. 
    We create the account with the following permissions:
    AmazonS3ReadOnlyAccess
    AWSAccountUsageReportAccess
    AWSAccountActivityAccess

    But this permission not because not found it ----> ReadOnlyAccess

    This is the error ---->

    Jun 08 17:49:35:149 [attach_socket, aws] Creating profile ConfigDef: vm-2.85.com.nimsoft.probe.common.ctd.984631f0aff2f978dd4ca265c0ce3b3f=Profile Setup ProfileDefinition ctdProfile
    Jun 08 17:49:37:805 [pool-27-thread-2, aws] Exception while creating S3 Client for location US : Skiping..
    Jun 08 17:49:41:929 [attach_socket, aws] Failed to obtain IP Address for resource 'Prueba': Prueba
    Jun 08 17:49:43:489 [pool-27-thread-2, aws] SNSDiscovery::SNS ListTopics Caught Exception for Region: [ap-northeast-1]User: arn:aws:iam::621635008065:user/ca-user is not authorized to perform: SNS:ListTopics on resource: arn:aws:sns:ap-northeast-1:621635008065:* (Service: AmazonSNS; Status Code: 403; Error Code: AuthorizationError; Request ID: ac36e2d0-f8a7-5b21-aa2b-bbe90ed5d977)
    Jun 08 17:49:43:489 [pool-27-thread-2, aws] com.amazonaws.services.sns.model.AuthorizationErrorException: User: arn:aws:iam::621635008065:user/ca-user is not authorized to perform: SNS:ListTopics on resource: arn:aws:sns:ap-northeast-1:621635008065:* (Service: AmazonSNS; Status Code: 403; Error Code: AuthorizationError; Request ID: ac36e2d0-f8a7-5b21-aa2b-bbe90ed5d977)
    Jun 08 17:49:44:597 [pool-27-thread-2, aws] SNSDiscovery::SNS ListTopics Caught Exception for Region: [ap-northeast-2]User: arn:aws:iam::621635008065:user/ca-user is not authorized to perform: SNS:ListTopics on resource: arn:aws:sns:ap-northeast-2:621635008065:* (Service: AmazonSNS; Status Code: 403; Error Code: AuthorizationError; Request ID: 5c3f2146-8743-55fc-9951-787f7130ad75)
    Jun 08 17:49:44:597 [pool-27-thread-2, aws] com.amazonaws.services.sns.model.AuthorizationErrorException: User: arn:aws:iam::621635008065:user/ca-user is not authorized to perform: SNS:ListTopics on resource: arn:aws:sns:ap-northeast-2:621635008065:* (Service: AmazonSNS; Status Code: 403; Error Code: AuthorizationError; Request ID: 5c3f2146-8743-55fc-9951-787f7130ad75)
    Jun 08 17:49:45:733 [pool-27-thread-2, aws] SNSDiscovery::SNS ListTopics Caught Exception for Region: [ap-south-1]User: arn:aws:iam::621635008065:user/ca-user is not authorized to perform: SNS:ListTopics on resource: arn:aws:sns:ap-south-1:621635008065:* (Service: AmazonSNS; Status Code: 403; Error Code: AuthorizationError; Request ID: 6e0d3d9a-6591-5300-9b5f-64a393e46bcb)
    Jun 08 17:49:45:733 [pool-27-thread-2, aws] com.amazonaws.services.sns.model.AuthorizationErrorException: User: arn:aws:iam::621635008065:user/ca-user is not authorized to perform: SNS:ListTopics on resource: arn:aws:sns:ap-south-1:621635008065:* (Service: AmazonSNS; Status Code: 403; Error Code: AuthorizationError; Request ID: 6e0d3d9a-6591-5300-9b5f-64a393e46bcb)
    Jun 08 17:49:46:996 [pool-27-thread-2, aws] SNSDiscovery::SNS ListTopics Caught Exception for Region: [ap-southeast-1]User: arn:aws:iam::621635008065:user/ca-user is not authorized to perform: SNS:ListTopics on resource: arn:aws:sns:ap-southeast-1:621635008065:* (Service: AmazonSNS; Status Code: 403; Error Code: AuthorizationError; Request ID: 4e978413-8b0f-582a-9066-dd2a7d79a17d)
    Jun 08 17:49:46:996 [pool-27-thread-2, aws] com.amazonaws.services.sns.model.AuthorizationErrorException: User: arn:aws:iam::621635008065:user/ca-user is not authorized to perform: SNS:ListTopics on resource: arn:aws:sns:ap-southeast-1:621635008065:* (Service: AmazonSNS; Status Code: 403; Error Code: AuthorizationError; Request ID: 4e978413-8b0f-582a-9066-dd2a7d79a17d)




    You are not authorized to perform this operation. (Service: AmazonEC2; Status Code: 403; Error Code: UnauthorizedOperation; Request ID: fdcb619b-4415-4fd9-9438-6cd7be45a895)
    Jun 08 17:54:40:138 [pool-10-thread-2, aws] com.amazonaws.services.ec2.model.AmazonEC2Exception: You are not authorized to perform this operation. (Service: AmazonEC2; Status Code: 403; Error Code: UnauthorizedOperation; Request ID: fdcb619b-4415-4fd9-9438-6cd7be45a895)
    at com.amazonaws.http.AmazonHttpClient$RequestExecutor.handleErrorResponse(AmazonHttpClient.java:1586)
    at com.amazonaws.http.AmazonHttpClient$RequestExecutor.executeOneRequest(AmazonHttpClient.java:1254)
    at com.amazonaws.http.AmazonHttpClient$RequestExecutor.executeHelper(AmazonHttpClient.java:1035)
    at com.amazonaws.services.ec2.AmazonEC2Client.doInvoke(AmazonEC2Client.java:11838)
    at com.amazonaws.services.ec2.AmazonEC2Client.invoke(AmazonEC2Client.java:11814)
    at com.amazonaws.services.ec2.AmazonEC2Client.describeInstances(AmazonEC2Client.java:5754)
    at com.amazonaws.services.ec2.AmazonEC2Client.describeInstances(AmazonEC2Client.java:5766)
    at com.nimsoft.probe.application.aws.impl.discovery.EC2Discovery.getServiceList(EC2Discovery.java:77)
    at com.nimsoft.probe.application.aws.impl.discovery.EC2Discovery.doServiceDiscovery(EC2Discovery.java:55)
    at com.nimsoft.probe.application.aws.impl.discovery.AutoDiscoveryTask.updateCfg(AutoDiscoveryTask.java:83)
    Jun 08 17:54:41:283 [pool-10-thread-2, aws] EC2Discovery::EC2 DescribeInstance Caught Exception for Region: [ap-northeast-2]You are not authorized to perform this operation. (Service: AmazonEC2; Status Code: 403; Error Code: UnauthorizedOperation; Request ID: 88a83c05-b398-456b-b4e2-3ed6892a4c04)


    What other permission do I need, or what could be the problem? my hub/robot has an internet connection without problems


  • 2.  RE: Error in aws probe
    Best Answer

    Posted Jun 21, 2021 08:07 PM
    Hi Community, the issue was permission of the user, this is the KB that help to resolve the issue.

    https://knowledge.broadcom.com/external/article?articleId=217820&_ga=2.244766659.777859945.1624289836-2084591996.1582897088
    Original Message