StartResourceScan - IAM Access Analyzer


Immediately starts a scan of the policies applied to the specified resource.

Request Syntax

POST /resource/scan HTTP/1.1 Content-type: application/json { "analyzerArn": "string", "resourceArn": "string", "resourceOwnerAccount": "string" }

URI Request Parameters

The request does not use any URI parameters.

Request Body

The request accepts the following data in JSON format.


The ARN of the analyzer to use to scan the policies applied to the specified resource.

Type: String

Pattern: [^:]*:[^:]*:[^:]*:[^:]*:[^:]*:analyzer/.{1,255}

Required: Yes


The ARN of the resource to scan.

Type: String

Pattern: arn:[^:]*:[^:]*:[^:]*:[^:]*:.*

Required: Yes


The AWS account ID that owns the resource. For most AWS resources, the owning account is the account in which the resource was created.

Type: String

Required: No

Response Syntax

HTTP/1.1 200

Response Elements

If the action is successful, the service sends back an HTTP 200 response with an empty HTTP body.


For information about the errors that are common to all actions, see Common Errors.


You do not have sufficient access to perform this action.

HTTP Status Code: 403


Internal server error.

HTTP Status Code: 500


The specified resource could not be found.

HTTP Status Code: 404


Throttling limit exceeded error.

HTTP Status Code: 429


Validation exception error.

HTTP Status Code: 400

See Also

For more information about using this API in one of the language-specific AWS SDKs, see the following: