I tried to use resource aws_glue_job, but as soon as it’s prepared to be launched, an error is shown as follows:
│ Error: error creating Glue Job (job): AccessDeniedException: Account 411xxxxxxxx (Account id) is denied access.
│
│ with aws_glue_job.job,
│ on main.tf line 94, in resource "aws_glue_job" "job":
│ 94: resource "aws_glue_job" "job" {
I checked the policies and apparently is okay. What might be doing it?
3
Answers
For some reason my issue was solved by creating and using a new account. This account being used previously was for test, that is why I did have no problems by changing It to a new one
We still have the same problem; even with sub-accounts of a totally new account. It seems like more and more people have the same issue:
I had the exact same problem. Logging with TF_LOG (debbuging_terraform) helped me to be sure that this was not being caused by anything that I could fix.
If you have already verified policies (For example I attached AWSGlueConsoleFullAccess policy to the role creating glue job) and you have also verified that aws provider is correct, see: provider. You can open a ticket with billing & account and they will escalate this properly. They helped me and now I am able to create glue jobs again with the same account.