# 调用PutResourcePolicy操作时发生错误（LimitExceededException）：日志组的资源策略已达上限

- **ID:** `aws/cloudwatch-logs-resource-policy-limit`
- **领域:** aws
- **类别:** resource_error
- **错误码:** `LimitExceededException`
- **验证级别:** ai_generated
- **修复率:** 85%

## 根因

CloudWatch Logs资源策略大小超过每个账户每个区域5120字符的限制。

## 版本兼容性

| 版本 | 状态 | 引入 | 弃用 |
|------|------|------|------|
| cloudwatch-logs-2024 | active | — | — |
| aws-cli-2.16.0 | active | — | — |

## 解决方案

1. ```
   List existing resource policies and remove unnecessary ones: aws logs describe-resource-policies. Then delete unused policies: aws logs delete-resource-policy --policy-name oldpolicy. Ensure total policy characters across all policies ≤ 5120.
   ```
2. ```
   Consolidate multiple resource policies into one by combining statements in a single policy document. Example: create a new policy with multiple statements using PutResourcePolicy.
   ```

## 无效尝试

- **** — 删除日志组不会影响账户级别的资源策略限制。 (100% 失败率)
- **** — 更改保留期与资源策略配额无关。 (100% 失败率)