CloudTrail shows "HeadBucket" events with "Access Denied" errors

CloudTrail shows "HeadBucket" events with "Access Denied" errors

0
Created On 10/10/18 08:00 AM - Last Modified 06/29/22 21:14 PM


Symptom


CloudTrail shows "HeadBucket" events with "Access Denied" errors

Resolution


Evident's built-in signatures do not make any explicit HeadBucket method calls; however, AWS S3's caching mechanism relies on this method to determine if a bucket exists or not.  When an AWS account is configured in Evident, you will see these errors.  The Access Denied errors will not cause issues to S3's caching mechanism, and it can generally be ignored.  If you want these calls to succeed, you could modify the Evident-Service-Role to include this policy, which will give the role permission to call HeadBucket:
  
{
    "Version": "2012-10-17",
    "Statement": [
        {
            "Effect": "Allow",
            "Action": [
                "s3:ListBucket"
            ],
            "Resource": [
                "*"
            ]
        }
    ]
}
  
 
Other users also viewed:
Actions
  • Print
  • Copy Link

    https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000CmDSCA0&refURL=http%3A%2F%2Fknowledgebase.paloaltonetworks.com%2FKCSArticleDetail