I tried for a long time, and search every possible example, but still failed to do that

You might need to add a lambda permission to allow eventbridge to invoke lambda: { "Effect": "Allow", "Action": "lambda:InvokeFunction", "Resource": "arnawslambda:_`region`_:_`account-id`_function_`function-name`_", "Principal": { "Service": "events.amazonaws.com" }, "Condition": { "ArnLike": { "AWS:SourceArn": "arnawsevents:_`region`_:_`account-id`_:rule/_`rule-name`_" } }, "Sid": "InvokeLambdaFunction" }