AWS environment fails to activate

Learn how to resolve AWS environment activation failure in Cloudera Data Warehouse on cloud

When activating an AWS environment in Cloudera Data Warehouse on cloud, the following error message might be returned if your cloud resources reside in the us-east-1 region:

TemplateURL must reference a valid S3 object to which you have access.

Cause of the issue🔗

For this region, the endpoint URL is incorrect and cannot load the CloudFormation template to create the AWS CloudFormation stack in your AWS account. Cloudera Data Warehouse uses these stack resources for Database Catalogs and Virtual Warehouses in Cloudera Data Warehouse.

Steps to resolve the issue🔗

Use the reduced permissions mode feature for AWS environments to manually create the CloudFormation stack for Cloudera Data Warehouse. This feature enables you to manually crate the CloudFormation stack resources from a template with a reduced set of IAM permissions. When you no longer need the environment, you must manually delete the CloudFormation stack resources in your AWS account.

Remove one of the permissions in your IAM permissions policy for the AWS account that you used to register the environment you want to activate for Cloudera Data Warehouse. For example, remove the s3:CreateBucket permission from your IAM permissions policy:

Removing one of the required permissions from your IAM policy causes Cloudera Data Warehouse to display the reduced permissions mode option in the system dialog box when you activate your environment in Cloudera Data Warehouse.
Follow the steps in Activating AWS environments in reduced permissions mode.
important
In Step 4 of the Activating AWS environments in reduced permissions mode procedure, edit the pre-populated CloudFormation template URL as follows.

Change the URL from:
```
https://<bucketName>.s3-region.amazonaws.com/cf-templates/<CDW-clusterID>-cf-template.yml
```
To:
```
https://<bucketName>.s3.amazonaws.com/cf-templates/<CDW-clusterID>-cf-template.yml
```
After you activate the environment and create the AWS CloudFormation stack resources in your AWS account, make sure that you apply the required tags to the stack that are listed in Required tags for CloudFormation stacks created with reduced permissions mode.
Add the s3:CreateBucket IAM permission back to your IAM permissions policy to make sure you have adequate permissions so Cloudera Data Warehouse can create CloudFormation stack resources for you when you activate environments later.

Deactivating environments created with the reduced permissions mode🔗

When you no longer need the environment, you must manually delete the CloudFormation stack resources in the AWS Console by following the steps in Deactivating AWS environments created with reduced permissions mode.

AWS environment fails to activate

Cause of the issue🔗

Steps to resolve the issue🔗

Deactivating environments created with the reduced permissions mode🔗

We want your opinion

How can we improve this page?