search

aws-samples / aws-security-reference-architecture-examples

Example solutions demonstrating how to implement patterns within the AWS Security Reference Architecture guide using CloudFormation (including Customizations for AWS Control Tower) and Terraform.
Other
977 stars 245 forks source link

[BUG] SRA-GUARDDUTY An error occurred (BadRequestException) when calling the EnableOrganizationAdminAccount operation #178

Closed gcasilva closed 3 months ago

gcasilva commented 1 year ago

Describe the bug

When running SRA Guardduty on a new AWS Account for the first time the error below can be seen:

"Traceback (most recent call last):\n File \"/var/task/crhelper/resource_helper.py\", line 204, in _wrap_function\n self.PhysicalResourceId = func(self._event, self._context) if func else ''\n File \"/var/task/app.py\", line 268, in process_cloudformation_event\n process_create_update_event(params, regions)\n File \"/var/task/app.py\", line 193, in process_create_update_event\n guardduty.process_organization_admin_account(params.get(\"DELEGATED_ADMIN_ACCOUNT_ID\", \"\"), regions)\n File \"/var/task/guardduty.py\", line 86, in process_organization_admin_account\n guardduty_client.enable_organization_admin_account(AdminAccountId=admin_account_id)\n File \"/opt/python/botocore/client.py\", line 530, in _api_call\n return self._make_api_call(operation_name, kwargs)\n File \"/opt/python/botocore/client.py\", line 964, in _make_api_call\n raise error_class(parsed_response, operation_name)\nbotocore.errorfactory.BadRequestException: An error occurred (BadRequestException) when calling the EnableOrganizationAdminAccount operation: The request is rejected because an invalid or out-of-range value is specified as an input parameter."

If we re-run the Cloudformation template then everything works correctly.

To Reproduce

Using SRA Guardduty on a new AWS Account (Management Account with Control Tower enabled) for the first time. On second execution everything works correctly and this error doesn't show up anymore.

Expected behavior

A clear and concise description of what you expected to happen.

Screenshots

If applicable, add screenshots to help explain your problem.

Deployment Environment (please complete the following information)

Additional context

Add any other context about the problem here.

BlakePierantoni commented 1 year ago

I'm getting the same bug. It looks like there is a param issue.

gcasilva commented 1 year ago

@BlakePierantoni I've tested this again with the last commit that was made and wasn't able to replicate the issue anymore, so I was going to close this one, but wanted to check if you're still having it on your scenario. Can you please test this again in the scenario you were having the issue to check if it's happening to you still? Thanks

BlakePierantoni commented 11 months ago

@gcasilva, yeah I tested this again and the issue is resolved. I didn't change anything in terms of config/deployment.

liamschn commented 3 months ago

Closing. Issue resolved. Please reach out if more assistance is needed.