AWS CLI listing S3 buckets gives SignatureDoesNotMatch error using IAM user credentials

amazon-web-services amazon-s3 amazon-iam aws-cli
49,590

Solution 1

Found my issue. I had old AWS keys in my environment variables. If you have environment variables named

AWS_SECRET_ACCESS_KEY
AWS_ACCESS_KEY_ID

the awscli will use those values instead of what is provided via ~/.aws/credentials.

Try running printenv | grep AWS and verify that those values aren't set. If so then just run a 

unset AWS_SECRET_ACCESS_KEY
unset AWS_ACCESS_KEY_ID

and you should be good to go.

Solution 2

In my case, this was due to incorrect aws_secret_access_key.

To check, open the file ~/.aws/credentials by typing:

cat ~/.aws/credentials

The content should be something like below:

[default]
aws_access_key_id = xxx
aws_secret_access_key = xx

See if the aws_access_key_id & aws_secret_access_key matches your credentials. If it doesn't, edit and save changes.

p/s: If you don't remember your aws_secret_access_key, generate a new key and secret by going to aws console --> your name --> My Security Credentials.

enter image description here

Then click 'Create access key':

enter image description here

Take note that you can only have two access keys at a time.

Solution 3

This error is because of incorrect aws s3 access key/secret key.

Solution 4

It means that your AWS security credentials got expired. Simply creating new credentials will work.

  • Go to your AWS account -> My security credentials
  • click on Create New Access Key. Make a note of access key id and secret access key
  • Run aws configure and enter new credentials

Solution 5

Can happen even when the machine time is not in sync with the NT server.

sudo ntpdate ntp.ubuntu.com helped me solve this problem.

Share:
49,590
Piyush dhore
Author by

Piyush dhore

Updated on August 26, 2021

Comments

  • Piyush dhore
    Piyush dhore over 2 years

    I am using AWS cli on Ubuntu 16.04 LTS, I am trying to list all buckets. In aws configure I have input the IAM user access key and IAM user secret key. This IAM user has permissions to list bucket and can list bucket in console.But using AWS cli with these keys and running command - aws s3 ls it is giving me this error.

    A client error (SignatureDoesNotMatch) occurred when calling the ListBuckets operation: The request signature we calculated does not match the signature you provided. Check your key and signing method.

    I have created a policy to list buckets for this particular IAM user also.

    I want to perform further sync operations and make all files public operations via a shell script using this IAM user credentials and do not want to use root credential.

Recents

Why Is PNG file with Drop Shadow in Flutter Web App Grainy?
How to troubleshoot crashes detected by Google Play Store for Flutter app
Cupertino DateTime picker interfering with scroll behaviour
Why does awk -F work for most letters, but not for the letter "t"?
Flutter change focus color and icon color but not works
How to print and connect to printer using flutter desktop via usb?
Critical issues have been reported with the following SDK versions: com.google.android.gms:play-services-safetynet:17.0.0
Flutter Dart - get localized country name from country code
navigatorState is null when using pushNamed Navigation onGenerateRoutes of GetMaterialPage
Android Sdk manager not found- Flutter doctor error
Flutter Laravel Push Notification without using any third party like(firebase,onesignal..etc)
How to change the color of ElevatedButton when entering text in TextField

Related

How can I 'aws s3 sync' two buckets, which are located in different accounts
AWS create role - Has prohibited field
"The AWS Access Key Id you provided does not exist in our records." when trying to use AWS CLI
Unable to find .aws directory
Unknown Options when Using aws s3 mv
Output AWS CLI "sync" results to a txt file
HTTPSConnectionPool(host='s3-us-west-1b.amazonaws.com', port=443): Max retries exceeded with url
Is it possible to get the canonical user id from AWS IAM users, from the .NET API?
AWS S3 CLI - Connection was closed before we received a valid response from endpoint
Does AWS CLI use SSL when uploading data into S3?