We are trying to set up Cloudberry Drive with Role Policy and not access keys. The ec2 instance has an instance role attached, giving it access to the S3 bucket. However, we get a 401 access denied error message when configuring Cloudberry Drive and hitting the test button. The SSL Test also fails with a 401 error. DId not find anything in the Cloudtrail logs.
We have also tried to put an S3 bucket policy that allows that role to access the s3 bucket with an action of s3.*. We have also tried using the S3FullPermission policy with the role, which still gets a 401 error. We made sure in advance that we were pointing to the correct region.
What are the permissions sets, or is there documentation on how to set up the Role policy base authentication with CloudBerry Drive?
On our EC2 instances, we only use IMDSv2, so I wonder if that has something to do with using the role that states 401 access is denied. The key connection works using the same policy attached to the user account with an access key and secret access.