AWS/ Serverless Fixing AccessDeniedException


Sharing is Caring

“Unhandled rejection AccessDeniedException: Your access has been denied by EC2, please make sure your function execution role have permission to CreateNetworkInterface. EC2 Error Code: UnauthorizedOperation. EC2 Error Message: You are not authorized to perform this operation.”

That’s a pretty annoying error to receive when deploying from Serverless to AWS, but the fix is really pretty simple.

Add following role policy to the functions role:

{
  "Effect": "Allow",
  "Action": [
    "ec2:CreateNetworkInterface",
    "ec2:DescribeNetworkInterfaces",
    "ec2:DeleteNetworkInterface"
  ],
  "Resource": "*"
}
Sharing is Caring

One response to “AWS/ Serverless Fixing AccessDeniedException”

  1. This was a resolution for me with the Chalice python serverless deployment. I added

    {
    “Action”: [
    “ec2:CreateNetworkInterface”,
    “ec2:DescribeNetworkInterfaces”,
    “ec2:DeleteNetworkInterface”
    ],
    “Resource”: “*”,
    “Effect”: “Allow”
    },

    early on in my policy.json file (custom) and it got me past the EC2 permissions issue. FTW!