Databricks

185369 · ‎05-04-2023

I am going to use the newly released DLT with UC.

But it keeps getting access denied. As I keep tracking the reasons, it seems that an account. ID other than my account ID or Databricks account ID is being requested.

I cannot use '*' in principal attribute aws in sqs access policy for security reasons.

I want to know how to track another account ID.

Priyag1 · ‎05-04-2023

Every service on AWS, an SQS queue, and all the other services in your stack using that queue will be configured with minimal permissions, leading to access issues. So, make sure you get your IAM policies set up correctly before deploying to production

View solution in original post

Priyag1 · ‎05-04-2023

initialize the SDK with an account set up with the required SQS permissions. You can do so in the IAM console

Priyag1 · ‎05-04-2023

Every service on AWS, an SQS queue, and all the other services in your stack using that queue will be configured with minimal permissions, leading to access issues. So, make sure you get your IAM policies set up correctly before deploying to production