search

PaladinCloud / CE

Paladin Cloud is an extensible, cloud security platform for developers. Join the community at https://discord.gg/xvCFD29Jj4
https://paladincloud.io/
Apache License 2.0
565 stars 52 forks source link

Error: creating Cognito User Pool: AccessDeniedException: #1576

Closed lferrari-navis closed 1 year ago

lferrari-navis commented 1 year ago

I tried to follow the PaladinCloud installation procedure but during Terraform implementation it stopps at resource 122 or 133 or 136 our of 1099. The error I'm getting though is consistent:

Error occured, please check error log for more details Error Message: Error occured, please check error log for more details

Creating Cognito User Pool: AccessDeniedException: User: arn:aws:sts::795375171603:assumed-role/PaladinCloudInstallerRole/i-0197c32fe3aadff35 is not authorized to perform: cognito-idp:CreateUserPool on resource: arn:aws:cognito-idp:us-east-1:795375171603:userpool/* because no identity-based policy allows the cognito-idp:CreateUserPool action status code: 400, request id: 8bfb673e-a303-45fc-8eec-a4200fe5f403

Can you help me understand how this can be fixed?

Thanks, Luciano Ferrari

lferrari-navis commented 1 year ago

updated title of the bug

Subbu-PaladinCloud commented 1 year ago

@lferrari-navis , you seem to have closed the bug, is the error resolved ? could you paste your local.py screen shot here to see what was put in the cognito domain name ?

lferrari-navis commented 1 year ago

I had to manually give the PaladinInstallerRole Cognito access and redeploy it. Now Its only doing around 200 remaining deployments

lferrari-navis commented 1 year ago

Now it's like this Resources created: 55/268, Time elapsed: 14m 18s [... ] but taking 14 minutes already.... lets see

Subbu-PaladinCloud commented 1 year ago

ok.. deployment takes about 20 -30 min

lferrari-navis commented 1 year ago

@lferrari-navis , you seem to have closed the bug, is the error resolved ? could you paste your local.py screen shot here to see what was put in the cognito domain name ?

I used kalerispaladin I think

lferrari-navis commented 1 year ago

Now it's like this Resources created: 55/268, Time elapsed: 14m 18s [... ] but taking 14 minutes already.... lets see

ok, it's moving now: 69/268, Time elapsed: 17m 31s

lferrari-navis commented 1 year ago

ok.. deployment takes about 20 -30 min

Installation is completed and I received an email with url but getting error: The connection has timed out

The server at internal-kaleris-paladin-1760488746.us-east-1.elb.amazonaws.com is taking too long to respond.

Subbu-PaladinCloud commented 1 year ago

how are you accessing this ? Please follow the steps for Portal access https://paladincloud.io/docs/connect-to-the-portal-after-installation/

Subbu-PaladinCloud commented 1 year ago

Hi @lferrari-navis , are you able to access the portal ? Please let us know if any issues.