Why am I seeing "Error" in the Access field for some buckets in the Amazon S3 console?
I see "Error" in the Access field for certain buckets in the Amazon Simple Storage Service (Amazon S3) console.
Resolution
The bucket list view in the Amazon S3 console includes an Access column that provides information about public access to each bucket. To see the Access value, the AWS Identity and Access Management (IAM) identity (user or role) must have the correct permissions.
The IAM user or role that uses the console must have the following permissions to each bucket:
s3:GetAccountPublicAccessBlock s3:GetBucketPublicAccessBlock s3:GetBucketPolicyStatus s3:GetBucketLocation s3:GetBucketAcl s3:ListAccessPoints s3:ListAllMyBuckets
If the IAM identity doesn't have the required permissions, then the identity sees "Error" in the Access field. This is also true if the identity is explicitly denied access to the required permissions.
To allow an IAM identity to see Access values in the Amazon S3 console, add the required permissions to the policy for the user or role.
Note: Because of eventual consistency, a bucket that you recently deleted might appear in the console with "Error" in the Access field. To confirm that a bucket is deleted, check the AWS CloudTrail event history for DeleteBucket events.
Related information
Configuring block public access settings for your S3 buckets
The permissions section is missing the "s3:" prefix for "GetAccountPublicAccessBlock" action
Thank you for your comment. We'll review and update the Knowledge Center article as needed.
Relevant content
- asked 3 years ago
- asked 6 months ago
- asked 2 months ago
- asked a year ago
- AWS OFFICIALUpdated 2 months ago
- AWS OFFICIALUpdated 2 years ago
- AWS OFFICIALUpdated 3 years ago
- AWS OFFICIALUpdated 2 years ago
