SAP Knowledge Base Article - Public

3451589 - AWS S3 Connection forbidden error - SAP Datasphere

Symptom

SAP Datasphere to Amazon Simple Storage Service Connection error.

  • Data Flows: Cause: Possible causes of error: Detailed error message (forbidden)
  • Replication Flows: Cause: Possible causes of error: Detailed error message (forbidden)

Environment

SAP Datasphere

Reproducing the Issue

Validate the connection in SAP Datasphere.

Cause

Request from SAP Datasphere was forbidden in AWS. AWS S3 responded with a 403 error.

Resolution

In Storage Gateway log, it shows the request ID and S3 Extended Request ID. Please raise a ticket/case to SAP asking for this information (Request ID and S3 Extended Request ID)

After then, please check detailed AWS error information using the Request ID and S3 Extended Request ID. The error details from AWS side should describe why the request from Datasphere was forbidden. In case further information needed, please check with AWS support

More information about AWS S3 403 error: https://docs.aws.amazon.com/AmazonS3/latest/userguide/troubleshoot-403-errors.html

PS: Please double check if public access of this S3 bucket is blocked by AWS. It needs to whitelist the outbound IP address of the Datasphere tenant. The outbound IP address can be found in "About" menu.

 

Keywords

KBA , DS-DI-CON , Connections , CA-DI-CP-SGW , Storage Gateway , Problem

Product

SAP Datasphere all versions