An error occurred (AccessDenied) when calling the ListBuckets operation: Access Denied

aws s3 ls
An error occurred (AccessDenied) when calling the ListBuckets operation: Access Denied

Solution: try to specify the name of the bucket you have permission, aws s3 ls s3://yourbucketname

Or add this to your policy (S3 read-write access to a certain bucket):
       {
           "Effect": "Allow",
           "Action": [
               "s3:ListAllMyBuckets"
           ],
           "Resource": "*"
       },

Errors[edit]

• An error occurred (AccessDenied) when calling the ListBuckets operation: Access Denied
• An error occurred (InvalidToken) when calling the ListBuckets operation: The provided token is malformed or otherwise invalid.
• Error: Failed to get existing workspaces: S3 bucket does not exist.
• An error occurred (InvalidBucketName) when calling the ListObjectsV2 operation: The specified bucket is not valid.
• An error occurred (AccessDenied) when calling the AssumeRole operation

Related[edit]

• aws s3api list-buckets
• s3:
• export | grep AWS_PROFILE
• aws sts get-session-token
• aws sts get-caller-identity

See also[edit]

• AWS S3 policies: s3:, S3 read-write access to a certain bucket, s3:ListBucket, s3:ListAllMyBuckets
• aws s3 ls
• AWS CLI: environmental variables, aws configure, ~/.aws/config, ~/.aws/credentials, ~/.aws/cli/alias, AWS_ACCESS_KEY_ID, AWS_SECRET_ACCESS_KEY
• IAM: AWS IAM Identity Center, AWS Identity and Access Management, Google Cloud IAM, Azure IAM, SailPoint, CyberArk, CIAM, ForgeRock, iam:ChangePassword, aws iam, AdministratorAccess, Context keys, IAM Access Analyzer, AWS policy, AWS managed policies, IAMUserChangePassword, AWS Roles, List of AWS policies, Resource-based policy, aws-iam-authenticator, IRSA, RDS Authentication, AccessDenied, AWS Authentication, AWS IAM external access analyzer