Log Analytics
Local-First
← Back to analyzer

Troubleshooting

S3 AccessDenied

Requester lacks bucket policy permissions for the requested key.

SQL Lens

Run this query locally to surface offenders.

SELECT key, requester FROM logs WHERE error_code = 'AccessDenied' LIMIT 100
Investigate in HUD

Playbook

  1. Confirm IAM principal or VPC endpoint is allowed in the bucket policy.
  2. Ensure the object is not encrypted with a different KMS key policy.
  3. Audit block public access flags that might override explicit grants.