IAM Issue: Access to Rekognition SearchFacesByImage from Lambda?

orcaman · August 29, 2019, 8:34pm

My lambda needs to call Rekognition’s SearchFacesByImage API. Upon invoking the deployed function, when calling the rekognition client’s search_faces_by_image, I’m getting the error:

AccessDeniedException: An error occurred (AccessDeniedException) when calling the SearchFacesByImage operation: User: (my user) is not authorized to perform: rekognition:SearchFacesByImage on resource: arn:aws:rekognition:us-east-1 raise error_class(parsed_response, operation_name) _make_api_callmager

I have this in my serverless.yaml:

iamRoleStatements:
  - Effect: "Allow"
    Action:
      - "s3:*"
    Resource:
      { "Fn::Join": ["", ["arn:aws:s3:::", { "Ref": "somebucket-test" }]] }
  - Effect: "Allow"
    Action:
      - "rekognition:*"
    Resource: "*"

The permissions for the S3 bucket seem to be working, but the rekognition one does not.

Any ideas?
Thanks

Topic		Replies	Views
Accessing S3 Bucket from Lambda Access Denied Serverless Framework lambda	1	10253	June 18, 2018
An error occurred when calling the Invoke operation Serverless Framework aws , lambda	1	3478	June 24, 2019
An error occurred (AccessDeniedException) when calling the UpdateFunctionCode operation Serverless Framework aws , lambda , cicd , iam	0	1011	May 17, 2022
Granting access for one function to use another Serverless Framework	3	2461	June 3, 2017
Generate IAM permissions for invoking lambda from lambda Serverless Framework aws	8	23042	May 29, 2020

IAM Issue: Access to Rekognition SearchFacesByImage from Lambda?

Related Topics