loading...

Discussion on: Amazon Route 53: How to automatically update IP addresses without using Elastic IPs

Collapse
sapebcfrance profile image
sapebcfrance

Hi,
I followed your instructions (I guess...) and I am getting the following error :
An error occurred (AccessDenied) when calling the ChangeResourceRecordSets operation: User: arn:aws:sts::6XXXXXXXX118:assumed-role/UpdateRoute53/i-XXXXXXXXX is not authorized to perform: route53:ChangeResourceRecordSets on resource: arn:aws:route53:::hostedzone/XXXXXXXX2I
I add the policy to the EC2 instance and the user (mine respectively) but I still get this error. Do you have an idea of what I could have done wrong ?

thanks in advance,

Olivier

Collapse
aws_john profile image
John Rotenstein Author

That's odd!

The IAM policy is specifically granting permission to call ChangeResourceRecordSets on the Hosted Zone. All I can suggest is that you check that you have put the correct HOSTED_ZONE_ID in the IAM Policy. It should start with a 'Z'.

Collapse
sapebcfrance profile image
sapebcfrance

Thanks John, as usual the problem was between the chair and the keyboard. This was exactly my mistake.