Runbook

S3 Access Denied (403 Forbidden) Error.

Back to Runbooks

Overview

This incident type occurs when a user or role is denied access to an S3 bucket due to HTTP error code 403, which indicates that the user or role does not have the necessary permissions to perform the requested action. This can happen when the user or role tries to access an S3 bucket that they do not have permissions for, or when their credentials have expired or been revoked. This can cause disruption to workflows that rely on data stored in the S3 bucket.

Parameters

Debug

List all S3 buckets

Check if the region is correct

Check the bucket policy

Check if the user's credentials are valid

Check if the user has the required permissions

Check if the user has the correct IAM permissions

Check the IAM user or role that is being used to access the S3 bucket to verify that it has the necessary permissions.

Repair

Create a policy for s3FullAccess and attach to user or role

Learn more

Related Runbooks

Check out these related runbooks to help you debug and resolve similar issues.