Cloudlink Amazon S3 备份存储“拒绝访问”状态代码 403

Samenvatting: 解决 Amazon S3 备份存储配置上的错误“Access Denied”状态代码 403。

Dit artikel is van toepassing op Dit artikel is niet van toepassing op Dit artikel is niet gebonden aan een specifiek product. Niet alle productversies worden in dit artikel vermeld.
Bekijk andere hulpbronnen

Symptomen

测试对 Amazon S3 备份存储的访问时出现“Access Denied”:


image.png
Error like:
com.amazonaws.services.s3.model.AmazonS3Exception:访问被拒(服务:Amazon S3 状态代码:403 错误代码:AccessDenied 请求 ID:WX2272G8B4XMDJKZ S3 扩展请求 ID:[...]

Oorzaak

为 Amazon S3 上的存储桶设置的存储桶访问策略不正确。

Oplossing

应用正确的存储区访问策略。下面是有效的存储区访问策略示例。 
{
    “版本”:"2012-10-17",
    “声明”:[
        {
            “Sid”:“可视化编辑器0”,
            “Effect”:“允许”,
            “action”:[
                ʺs3:GetObjectVersionTagging“,
                ʺs3:ReplicateObject“,
                “s3:GetObjectAcl”,
                ʺs3:GetIntelligentTieringConfiguration“,
                “s3:PutLifecycleConfiguration”,
                “s3:GetObjectVersionAcl”,
                “s3:PutObjectTagging”,
                ʺs3:DeleteObject“,
                “s3:DeleteObjectTagging”,
                “s3:GetBucketPolicyStatus”,
                “s3:GetObjectRetention”,
                ʺs3:DeleteObjectVersionTagging“,
                ʺs3:GetBucketNotification“,
                ʺs3:GetReplicationConfiguration“,
                “s3:PutObject”,
                ʺs3:GetObject“,
                “s3:PutBucketNotification”,
                “s3:PutBucketLogging”,
                ʺs3:GetAnalyticsConfiguration“,
                “s3:GetObjectVersionForReplication”,
                “s3:GetLifecycleConfiguration”,
                “s3:GetInventoryConfiguration”,
                “s3:GetBucketTagging”,
                ʺs3:DeleteObjectVersion“,
                ʺs3:GetBucketLogging“,
                ʺs3:ListBucketVersions“,
                ʺs3:ReplicateTags“,
                ʺs3:RestoreObject“,
                “s3:ListBucket”,
                “s3:GetAccelerateConfiguration”,
                ʺs3:GetBucketPolicy“,
                ʺs3:PutEncryptionConfiguration“,
                ʺs3:GetEncryptionConfiguration“,
                ʺs3:AbortMultipartUpload“,
                “s3:PutBucketTagging”,
                ʺs3:GetObjectTagging“,
                “s3:GetMetricsConfiguration”,
                ʺs3:PutBucketVersioning“,
                “s3:GetBucketPublicAccessBlock”,
                ʺs3:ListBucketMultipartUploads“,
                “s3:PutObjectVersionTagging”,
                ʺs3:GetBucketVersioning“,
                ʺs3:GetBucketAcl“,
                “s3:PutInventoryConfiguration”,
                “s3:PutObjectRetention”,
                ʺs3:GetBucketCORS“,
                ʺs3:GetBucketLocation“,
                ʺs3:ReplicateDelete“,
                ʺs3:GetObjectVersion”
            ],
            “Resource”:[
                ʺarn:aws:s3:::BUCKET“,
                ʺarn:aws:s3:::BUCKET/*”
            ]
        }
    ]
}

Getroffen producten

CloudLink SecureVM, CloudLink
Artikeleigenschappen
Artikelnummer: 000210609
Artikeltype: Solution
Laatst aangepast: 26 jun. 2023
Versie:  5
Vind antwoorden op uw vragen via andere Dell gebruikers
Support Services
Controleer of uw apparaat wordt gedekt door Support Services.