Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

How to generate policy based on CloudTrail events and resolve errors

Tags:

amazon-web-services

amazon-iam

amazon-cloudtrail

While generating a policy in IAM for a specific role using feature "Generate policy based on CloudTrail events", I get error "Policy generation failed. CloudTrail log files processed per policy generation limit exceeded. Please fix before trying again."

And if generated for few days, policy does not include DynamoDB and SQS policies used by the role

like image 506
Nishant Gupta Avatar asked Dec 18 '25 14:12

Nishant Gupta

1 Answers

Please have a look at the Access Analyzer quotas

Based on the error message you hit the quota of 100,000 AWS CloudTrail log files processed per policy generation.

You can reduce the period of the policy or reduce the number of regions selected.

like image 54
Nathaniel Assis Avatar answered Dec 20 '25 09:12

Nathaniel Assis

Sign in to Comment

Related questions

Can you query the deployment status of an AWS Amplify preview build from the CLI or an API?
Cannot set consistency level when querying Amazon Keyspaces service from DataGrip
How to authenticate against an AWS Cognito User Pool in Python?
How to assign multiple outgoing IPs addresses to a single instance on AWS?

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!