我有权创建lambda函数以及RDS实例。我可以通过AWS控制台使用这些工具,而不会出现问题。但是,以下每个命令都会失败:
$ aws lambda list-functions
An error occurred (AccessDeniedException) when calling the ListFunctions
operation: User: arn:aws:iam::<IAM ID>:user/<username> is not
authorized to perform: lambda:ListFunctions on resource: * with an explicit deny
$ aws rds describe-db-instances
An error occurred (AccessDenied) when calling the DescribeDBInstances
operation: User: arn:aws:iam::<IAM ID>:user/<username> is not
authorized to perform: rds:DescribeDBInstances with an explicit deny
CLI访问是否需要单独的权限?
答案 0 :(得分:0)
@ Michael-sqlbot帮助我意识到我没有在CLI上使用MFA,这是导致错误的原因。我按照Using Temporary Security Credentials to Request Access to AWS Resources - AWS Identity and Access Management上列出的说明来解决我的问题。