cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Cloud Appliance Library kann ein Konto in Amazon Web Services nicht verwenden

Former Member

on ‎08-18-2016 6:59 PM

0 Kudos

Hallo,

der Amazon-EC2-Service ist für das AWS-Konto aktiv.

in Amazon Web Services wurde im IAM-Management ein User mit den folgenden Rollen angelegt:

- AmazonEC2FullAccess

- AmazonVPCFullAccess

- ReadOnlyAccess

- AWSAccountUsageReportAccess

https://console.aws.amazon.com/iam

In der Cloud Appliance Library kann zum IAM-User des Amazon Web Services kein Konto angelegt werden.

https://cal.sap.com/console/

Fehlermeldung:

Ungültige Konto-Credentials oder keine Berechtigung für den Web-Service Elastic Compute Cloud (EC2) des Cloud-Anbieters. Der EC2-Service muss aktiviert sein, und Ihr IAM-Benutzer benötigt die folgenden Rollen: AmazonEC2FullAccess, AmazonVPCFullAccess, ReadOnlyAccess und AWSAccountUsageReportAccess. Weitere Informationen erhalten Sie auf unserer FAQ-Seite (http://scn.sap.com/docs/DOC-54564).


Darf ich um Unterstützung bitten.


Danke.


Paul

Show replies
Show replies
Answer

Accepted Solutions (0)

Answers (2)

Answers (2)

stanimir_eisner
Employee
Employee
‎08-19-2016 1:04 PM
0 Kudos

Hi Paul,

Another reason could be that you have not provided a payment method to AWS or that you have not activated the EC2 service?

Best regards,

Stanimir

Show replies
Show replies
former_member271156
Member
‎09-19-2016 8:14 PM
0 Kudos

Hello,

I have the same Problem after I have followed the guided procedures.

How exactly do I provide a payment method ? Is it just entering a credit Card ? This I did. Or is there a seperate step ?

Thanks.

Andreas

Former Member
‎09-20-2016 9:59 AM
0 Kudos

Hello,

please try the following.

The link shows ( http://scn.sap.com/docs/DOC-54564 ) you need to do the following:

  1. In AWS Identity and Access Management (IAM), create two new groups .

  1. Add for each of the groups two of the following roles:

-  AmazonEC2FullAccess

-  AmazonVPCFullAccess

-  ReadOnlyAccess

-  AWSAccountUsageReportAccess

   For example,

        For the group1, add these roles: AmazonEC2FullAccess and AmazonVPCFullAccess

        For the group2, add these roles: ReadOnlyAccess and AWSAccountUsageReportAccess

  1. Create a new user in IAM and assign to it the two groups.

  1. Generate the credentials for this new user.

In the SAP Cloud Appliance Library you should use the credentials of the user.

After looking at your IAM users, you have not created these two groups yet. You will need to create the two groups and put EC2/VPC Full Access in one group and ReadOnly/UsageReportAccess in the other group.

Once you have done so, please try again. It should function properly.

I hope this helps.


KR


Paul

JoergWolf
Product and Topic Expert
Product and Topic Expert
‎08-19-2016 9:26 AM
0 Kudos

Hi Paul,

switching to English since CAL support is mainly done by English-speaking colleagues.

I guess you get the error when clicking on Test Connection in the Accounts section of the CAL Console (left navigation bar) ?

As far as I know, this error will appear if the entered access keys don't match with the ones in the AWS console (the IAM roles shouldn't play a role at this stage, only later when you create an instance).

Can you verfiy that the key pair is correct ? Or generate a new key pair in AWS and try that one ?

Best,

Joerg

Show replies
Show replies
Ask a Question