Hello,
I am trying to get connect SNS with SQS but I am still getting errors about access denied. I don’t know where to find the correct IAM role.
I got these errors:
{
"notification": {
"messageId": "e9f17b91-58c0-52a4-8591-2080228d5872",
"topicArn": "arn:aws:sns:eu-west-1:186135716248:rn_sns_topic_dev_ras_appointments.fifo",
"timestamp": "2022-06-01 14:30:37.01"
},
"delivery": {
"deliveryId": "9f592ad0-e64c-41a3-899b-1d727a8268e8",
"redrivePolicy": "{\"deadLetterTargetArn\":\"arn:aws:sqs:eu-west-1:186135716248:ras-datalake-export-dev-dlq.fifo\"}",
"destination": "arn:aws:sqs:eu-west-1:186135716248:ras-datalake-export-dev-dlq.fifo",
"originalDestination": "arn:aws:sqs:eu-west-1:186135716248:ras-datalake-export-dev.fifo",
"providerResponse": "{\"sqsRequestId\":\"0dcf2d30-06ee-5d8d-bcab-76217ca38eaa\",\"errorCode\":\"KMS.AccessDeniedException\",\"errorMessage\":\"null (Service: AWSKMS; Status Code: 400; Error Code: AccessDeniedException; Request ID: a0901cd5-635c-4d9f-90d4-5f820a9d0680; Proxy: null)\"}",
"dwellTimeMs": 95,
"statusCode": 400
},
"status": "FAILURE"
}
{
"notification": {
"messageId": "e9f17b91-58c0-52a4-8591-2080228d5872",
"topicArn": "arn:aws:sns:eu-west-1:186135716248:rn_sns_topic_dev_ras_appointments.fifo",
"timestamp": "2022-06-01 14:30:37.01"
},
"delivery": {
"deliveryId": "61e042dc-7f62-4169-b20f-32d8056c3c75",
"destination": "arn:aws:sqs:eu-west-1:186135716248:ras-datalake-export-dev.fifo",
"providerResponse": "{\"sqsRequestId\":\"23fa49c5-cc4d-50dc-9233-12d4b600f3ff\",\"errorCode\":\"AccessDenied\",\"errorMessage\":\"Access to the resource https://sqs.eu-west-1.amazonaws.com/186135716248/ras-datalake-export-dev.fifo is denied.\"}",
"dwellTimeMs": 31,
"statusCode": 403
},
"status": "FAILURE"
}
Could you help me with that, please?