Architect Data Action returns 403 when invoking Lambda

QueueBreaker · May 29, 2026, 5:16pm

The Data Action throws a 403 Forbidden. The IAM role has lambda:InvokeFunction permission. The policy ARN matches the Lambda. Still getting access denied. Here is the role policy:

{
 "Version": "2012-10-17",
 "Statement": [
 {
 "Effect": "Allow",
 "Action": "lambda:InvokeFunction",
 "Resource": "arn:aws:lambda:us-west-2:123456789:function:AdherenceCalc"
 }
 ]
}

What am I missing?

SdkSammy · May 29, 2026, 6:00pm

Did you add the Lambda function ARN to the resource value in the trust policy? The execution role needs permission to invoke, but the function itself must also trust that role. Check the Configuration tab on the Lambda for the Resource-Based Policy.