当我在SageMaker的Notebook实例中创建linear_learner_mnist示例模型时,即使我已经拥有具有AmazonSageMakerFullAccess和AssumeRole附加策略的角色,我仍会遇到错误。当我将AdministratorAccess策略添加到该角色时,一切正常。我错过了什么吗?
P.S 角色已存在且已附加 :)
客户端错误: 在调用CreateTrainingJob操作时发生了一个错误(ValidationException): 无法假设角色arn:aws:iam::XXX:role/sagemaker-stack-SageMakerExecutionRole-1JT7AT4OPUK9R。 请确保该角色存在并允许主体'sagemaker.amazonaws.com'来假设角色。
P.S 角色已存在且已附加 :)
Resources:
SageMakerExecutionRole:
Condition: RoleArnEmpty
Type: "AWS::IAM::Role"
Properties:
AssumeRolePolicyDocument:
Statement:
- Effect: "Allow"
Principal:
Service:
- "sagemaker.amazonaws.com"
Action:
- sts:AssumeRole
ManagedPolicyArns:
- "arn:aws:iam::aws:policy/AmazonSageMakerFullAccess"
Path: "/service-role/"
Policies:
Fn::If:
- S3BucketNotEmpty
-
- PolicyName: SageMakerS3BucketAccess
PolicyDocument:
Version: '2012-10-17'
Statement:
- Effect: Allow
Action:
- s3:*
Resource:
- !Sub 'arn:aws:s3:::${SageMakerS3Bucket}'
- !Sub 'arn:aws:s3:::${SageMakerS3Bucket}/*'
- Ref: AWS::NoValue
客户端错误: 在调用CreateTrainingJob操作时发生了一个错误(ValidationException): 无法假设角色arn:aws:iam::XXX:role/sagemaker-stack-SageMakerExecutionRole-1JT7AT4OPUK9R。 请确保该角色存在并允许主体'sagemaker.amazonaws.com'来假设角色。