After creating the distribution network when I am going to access through the Domain name URL, it's showing the error '#AccessDenied'' (Screenshot is attached).
Need help to resolve the #issue. I have created a #CloudFront distribution network and the Origin is an #S3bucket (Bucket & Files are with full public access). After creating the distribution network when I am going to access through the Domain name URL, it's showing the error '#AccessDenied'' (Screenshot is attached). #awscloud #CloudFront #help
Replies
Bucket permissions. Check the Access for CDN you have created. Try to access the files with S3 URL first, if this works then CDN domain should work also
I have checked...I am able to access the file with S3 URL but not with CDN domain.
Sushant Bhatia Allow Cloudfront to access S3 by applying permissions on S3 Bucket.
Could be DNS related, give it a few hours to update the DNS records. You can validate that by making a test file in S3 public and then try accessing it through CDN URL
It's already has been 2 hours...also CDN is in enable state.
Sushant Bhatia are you able to access any file set as public?Also, validate OAI access policy under bucket policy.
It is clearly a permission issue. Either you grant public read access or use role to grant permission
I have already on the public access of S3 bucket & file into the bucket.
Sushant Bhatia is there any acl permission on file
Owais Ahmed no
Simple... You need to go to the S3 bucket policies and mention it to allow access to CloudFront. Till you do that CF can't access your bucket.... And in CF you need to give S3 as origin... It's called OAI... Read OAI and S3 bucket policies and you are gold
Could you share your S3 bucket Policy settings? So anyone can have a look and help you sort it out.
Been long now u should be able to access the S3 content without changing any bucket policy
It seems your origins configuration is not correct. Make sure you are pointing to index.html in correct path
Sachin Meshram I think the issue is with this He is CRT Try this
cloud front is not able to access the s3 bucket contents you need to check bucket policy allows your CDN to access this bucket .
