Brian Cline

AWS/ Serverless Fixing AccessDeniedException

Sharing is Caring

“Unhandled rejection AccessDeniedException: Your access has been denied by EC2, please make sure your function execution role have permission to CreateNetworkInterface. EC2 Error Code: UnauthorizedOperation. EC2 Error Message: You are not authorized to perform this operation.”

That’s a pretty annoying error to receive when deploying from Serverless to AWS, but the fix is really pretty simple.

Add following role policy to the functions role:

{
  "Effect": "Allow",
  "Action": [
    "ec2:CreateNetworkInterface",
    "ec2:DescribeNetworkInterfaces",
    "ec2:DeleteNetworkInterface"
  ],
  "Resource": "*"
}

Sharing is Caring

June 2, 2016

Brian Cline

Programming

AccessDeniedException, AWS, CreateNetworkInterface, Serverless

One response to “AWS/ Serverless Fixing AccessDeniedException”

Chris G. Sellers says:

August 19, 2016 at 1:27 pm

This was a resolution for me with the Chalice python serverless deployment. I added

{
“Action”: [
“ec2:CreateNetworkInterface”,
“ec2:DescribeNetworkInterfaces”,
“ec2:DeleteNetworkInterface”
],
“Resource”: “*”,
“Effect”: “Allow”
},

early on in my policy.json file (custom) and it got me past the EC2 permissions issue. FTW!

AWS/ Serverless Fixing AccessDeniedException

Related Posts:

One response to “AWS/ Serverless Fixing AccessDeniedException”