[GH-ISSUE #2072] S3FS | Unable to Mount S3 using IAM Assume Role #1048

Open
opened 2026-03-04 01:50:57 +03:00 by kerem · 1 comment
Owner

Originally created by @subba5678 on GitHub (Dec 1, 2022).
Original GitHub issue: https://github.com/s3fs-fuse/s3fs-fuse/issues/2072

Hi Team,

We created a Trust relationship and Assume IAM Role for a User, With Assume rule we are unable to mount S3 as a local filesystem, however with Assume role we are able to perform API actions (aws ls , aws scp,aws sync)

Used below Command to mount

s3fs S3Bucket Name /newmount/ -o passwd_file=PATH -o dbglevel=info -f -o curldbg

s3fs S3Bucket Name /newmount/ -o passwd_file=PATH aws_role=ABC -o dbglevel=info -f -o curldbg

s3fs S3Bucket Name /newmount/ -o passwd_file=PATH aws_role=ABC,url=https://s3-us-west-2.amazonaws.com/S3Bucket Name/ -o dbglevel=info -f -o curldbg

s3fs S3Bucket Name /newmount/ -o profile=NAME -o dbglevel=info -f -o curldbg

s3fs S3Bucket Name /newmount/ -o profile=NAME iam_role=arn:aws:iam::AAAAA:role/ABC -o dbglevel=info -f -o curldbg

s3fs S3Bucket Name /newmount/ -o passwd_file=PATH aws_role=ABC,url=https://s3-us-west-2.amazonaws.com/S3Bucket Name/ -o use_path_request_style -o endpoint=us-west-2 -o dbglevel=info -f -o curldbg

S3FS Version : 1.91

ERRORS

[CRT] s3fs.cpp:s3fs_check_service(3587): invalid credentials(host=https://s3-us-west-2.amazonaws.com/ACV) - result of checking service.
2022-12-01T18:57:00.667Z [ERR] s3fs.cpp:s3fs_exit_fuseloop(3383): Exiting FUSE event loop due to errors

2022-12-01T18:57:00.676Z [INF] s3fs.cpp:s3fs_destroy(3437): destro

Originally created by @subba5678 on GitHub (Dec 1, 2022). Original GitHub issue: https://github.com/s3fs-fuse/s3fs-fuse/issues/2072 Hi Team, We created a Trust relationship and Assume IAM Role for a User, With Assume rule we are unable to mount S3 as a local filesystem, however with Assume role we are able to perform API actions (aws ls , aws scp,aws sync) **Used below Command to mount** s3fs S3Bucket Name /newmount/ -o passwd_file=PATH -o dbglevel=info -f -o curldbg s3fs S3Bucket Name /newmount/ -o passwd_file=PATH aws_role=ABC -o dbglevel=info -f -o curldbg s3fs S3Bucket Name /newmount/ -o passwd_file=PATH aws_role=ABC,url=https://s3-us-west-2.amazonaws.com/S3Bucket Name/ -o dbglevel=info -f -o curldbg s3fs S3Bucket Name /newmount/ -o profile=NAME -o dbglevel=info -f -o curldbg s3fs S3Bucket Name /newmount/ -o profile=NAME iam_role=arn:aws:iam::AAAAA:role/ABC -o dbglevel=info -f -o curldbg s3fs S3Bucket Name /newmount/ -o passwd_file=PATH aws_role=ABC,url=https://s3-us-west-2.amazonaws.com/S3Bucket Name/ -o use_path_request_style -o endpoint=us-west-2 -o dbglevel=info -f -o curldbg S3FS Version : 1.91 ERRORS [CRT] s3fs.cpp:s3fs_check_service(3587): invalid credentials(host=https://s3-us-west-2.amazonaws.com/ACV) - result of checking service. 2022-12-01T18:57:00.667Z [ERR] s3fs.cpp:s3fs_exit_fuseloop(3383): Exiting FUSE event loop due to errors 2022-12-01T18:57:00.676Z [INF] s3fs.cpp:s3fs_destroy(3437): destro
Author
Owner

@ggtakec commented on GitHub (Jan 15, 2023):

@subba5678
Please let me know what version of s3fs you are using.
Also, run it with dbglevel=info or curldbg as a startup option and let us know the log.
If you can, try it with the latest code on the master branch as well.
Thanks in advance for your help.

<!-- gh-comment-id:1383093315 --> @ggtakec commented on GitHub (Jan 15, 2023): @subba5678 Please let me know what version of s3fs you are using. Also, run it with `dbglevel=info` or `curldbg` as a startup option and let us know the log. If you can, try it with the latest code on the master branch as well. Thanks in advance for your help.
Sign in to join this conversation.
No milestone
No project
No assignees
1 participant
Notifications
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference
starred/s3fs-fuse#1048
No description provided.