Search code examples
amazon-web-servicesaws-lambdaamazon-iamamazon-sqsamazon-vpc

Unable to add trigger to AWS Lambda

I am trying to add SQS as a trigger to my Lambda function running in AWS-VPC but it throws error as :

enter image description here

An error occurred when creating the trigger: The provided execution role does not have permissions to call ReceiveMessage on SQS (Service: AWSLambda; Status Code: 400; Error Code: InvalidParameterValueException; Request ID: d34b7525-5c69-4434-a015-112e8e74f447; Proxy: null)

Tried via adding AWSLambdaVPCAccessExecutionRole to the policy for the role as well via IAM. But no luck!

I am unable to figure where I am making a mistake? Please help me out, if anyone had similar experience in past or knows how to resolve it. Thanks you in advance!

Solution

  • Please attach managed policy AWSLambdaSQSQueueExecutionRole in your lambda execution role. If your lambda function is working with any other aws services, you can try creating custom role and add specific permissions.

    In aws if any service want to access any another service you need those specific permission in role.

    for more information on lambda permission please check Managed lambda permissions