目前我遇到了让我的员工连接到SQS的问题。这是日志:
2014-07-21T21:37:26Z error: AWS::SQS::Errors::AccessDenied: Access to the resource https://sqs.eu-west-1.amazonaws.com/343152361204/dev-compose-request is denied.
dev-compose-request 是队列的名称。
我我能够将来自我的其他ElasticBeanStalk WebApp(服务器层)的消息发布到此队列中。
My Worker Tier位于安全组中,允许任何出站连接。
答案 0 :(得分:9)
听起来类似于:AWS Beanstalk Worker can't start SQS daemon aws-sqsd
您是否可以确保与您的环境相关联的IAM实例配置文件(可能名为aws-elasticbeanstalk-ec2-role,但也可以命名为其他内容)具有上述链接中列出的所有权限? (以下复制以供参考)
{
"Version": "2012-10-17",
"Statement": [
{
"Sid": "QueueAccess",
"Action": [
"sqs:ChangeMessageVisibility",
"sqs:DeleteMessage",
"sqs:ReceiveMessage"
],
"Effect": "Allow",
"Resource": "*"
},
{
"Sid": "MetricsAccess",
"Action": [
"cloudwatch:PutMetricData"
],
"Effect": "Allow",
"Resource": "*"
}
]
}