AWS

AWS Error Codes

Our AWS error library covers high-impact exceptions across S3, IAM, EC2, Lambda, and DynamoDB with service-specific diagnostics. Each entry is written for incident workflows using RequestId and HostId evidence, policy scope checks, and quota or regional constraint analysis.

81 error codes available|Page 1 of 6

Showing 1-15 of 81.

AWSAccessDenied

Access Denied

AWS AccessDenied means authorization failed for the requested action and resource. In S3 this is typically HTTP 403, while some AWS Query APIs return an AccessDenied variant with HTTP 400.

AWSAccountProblem

Account Problem

AWS AccountProblem (Account Problem) means there is an AWS account-level issue that prevents the operation from completing and AWS directs you to contact Support. In Amazon S3, this error returns HTTP 403.

AWSAmbiguousGrantByEmailAddress

Ambiguous Grant by Email Address

AWS AmbiguousGrantByEmailAddress means the ACL grantee email address is associated with more than one AWS account, so Amazon S3 cannot resolve a single principal (HTTP 400).

Bad Digest

AWS BadDigest means the Content-MD5 or checksum value in the request does not match what Amazon S3 received for that payload (HTTP 400).

AWSBucketAlreadyExists

Bucket Already Exists

AWS BucketAlreadyExists (Bucket Already Exists) means the requested bucket name is not available because bucket names are globally shared. In Amazon S3, this error returns HTTP 409.

AWSBucketAlreadyOwnedByYou

Bucket Already Owned By You

AWS BucketAlreadyOwnedByYou (Bucket Already Owned By You) means the bucket already exists and is owned by your AWS account. In Amazon S3, this error returns HTTP 409.

AWSCNAMEAlreadyExists

CNAME Already Exists

CloudFront returns `CNAMEAlreadyExists` when an alternate domain name is already attached to another distribution, so the alias cannot be assigned again. CloudFront returns HTTP 409 for this conflict.

AWSConcurrentModification

Concurrent Modification

IAM returns `ConcurrentModification` when overlapping write operations target the same IAM resource at the same time, producing a control-plane conflict. IAM returns HTTP 409 for this error.

AWSConditionalCheckFailedException

Conditional Check Failed Exception

AWS ConditionalCheckFailedException means a DynamoDB conditional request failed because the condition expression evaluated to false (HTTP 400).

AWSCredentialsNotSupported

Credentials Not Supported

AWS CredentialsNotSupported (Credentials Not Supported) means the request type does not support credentials. In Amazon S3, this error returns HTTP 400.

AWSCrossLocationLoggingProhibited

Cross Location Logging Prohibited

AWS CrossLocationLoggingProhibited (Cross Location Logging Prohibited) means server access logging cannot target a bucket in another AWS Region. In Amazon S3, this error returns HTTP 403.

AWSDeleteConflict

Delete Conflict

AWS DeleteConflict means the IAM resource cannot be deleted because subordinate entities are still attached (HTTP 409).

AWSDistributionAlreadyExists

Distribution Already Exists

AWS DistributionAlreadyExists means the CallerReference is already associated with another CloudFront distribution request (HTTP 409).

AWSDistributionNotDisabled

Distribution Not Disabled

AWS DistributionNotDisabled (Cloud Front Distribution Not Disabled) means the distribution must be disabled before it can be deleted. In the CloudFront API, this error returns HTTP 409.

AWSEC2AccessDeniedException

EC2 Access Denied Exception

AWS EC2AccessDeniedException means Lambda needs additional permissions to configure VPC settings for the function invoke path (HTTP 502).

AWS Error Codes | Error Reference