AWS SSO: Error: error reading SSO Instances: AccessDeniedException

codelkirby · October 19, 2021, 1:33pm

Hi:

I just turned on AWS SSO and was playing with terraform to create permission set resources. I copy and pasted the sample code from here: Terraform Registry

When I create the plan, I end up with an exception:
│ Error: error reading SSO Instances: AccessDeniedException:
│
│ with data.aws_ssoadmin_instances.example,
│ on main.tf line 15, in data “aws_ssoadmin_instances” “example”:
│ 15: data “aws_ssoadmin_instances” “example” {}

I’m using an IAM user with FullAdmin privileges. It seems to work fine through the AWS console. I am using the API Key/Secret of the same IAM user.

Does anyone have any ideas why Terraform would behave differently in this case?

Kind Regards,
Pete

codelkirby · October 19, 2021, 2:18pm

Hi,

I was able to resolve my issue. It was environmental after all. My AWS SSO instance was created in different region than what I had set as the region in Terraform. Silly mistake. Hope this saves someone a couple of hours of head banging.

Kind Regards,
Pete

ebarrere · October 19, 2023, 2:07am

Well unfortunately I spent an hour or so banging my head before I even decided to search for it, but thanks for this — quick, easy fix once I did.

imssr · November 28, 2024, 11:16pm

Thanks @codelkirby, It solves my issue. was debugging from last one hour

Topic		Replies	Views
Using terraform in an AWS SSO+Okta environment Terraform tf-aws-provider-release	1	1120	February 17, 2022
AWS backup, always getting AccessDeniedException AWS	0	2069	February 4, 2020
AccessDenied Error with no explanation AWS	0	684	January 21, 2022
Error creating S3 Bucket (bucketname): AccessDenied: Access Denied Terraform	1	3847	May 13, 2022
Enabling S3 permissions in a terraform aws_iam_policy_document Terraform	0	2244	November 30, 2021

AWS SSO: Error: error reading SSO Instances: AccessDeniedException

Related topics