Las traducciones son generadas a través de traducción automática. En caso de conflicto entre la traducción y la version original de inglés, prevalecerá la version en inglés.
Permisos necesarios para usar políticas de IAM personalizadas para administrar el acceso a la consola Connect Customer
Si utiliza políticas de IAM personalizadas para administrar el acceso a la consola Connect Customer, sus usuarios necesitan algunos o todos los permisos que se enumeran en este artículo, en función de las tareas que deban realizar.
El uso connect:* de una política de IAM personalizada otorga a los usuarios todos los permisos de Connect Customer que se enumeran en este artículo.
AWS política gestionada: AmazonConnect _ FullAccess política
Para permitir el read/write acceso total a Connect Customer, debe adjuntar dos políticas a sus usuarios, grupos o funciones. Asocie la política AmazonConnect_FullAccess y una política personalizada al siguiente contenido:
- JSON
-
-
{
"Version":"2012-10-17",
"Statement": [
{
"Sid": "AttachAnyPolicyToAmazonConnectRole",
"Effect": "Allow",
"Action": "iam:PutRolePolicy",
"Resource": "arn:aws:iam::*:role/aws-service-role/connect.amazonaws.com/AWSServiceRoleForAmazonConnect*"
}
]
}
Para permitir que un usuario de IAM cree una instancia, asegúrese de que dispone de los permisos concedidos por la política AmazonConnect_FullAccess.
Cuando utilice la política AmazonConnect_FullAccess, tenga en cuenta lo siguiente:
-
Se requieren privilegios adicionales para crear un bucket de Amazon S3 con el nombre que elija o para usar un bucket existente al crear o actualizar una instancia desde el sitio web de Connect Customer administración. Si elige ubicaciones de almacenamiento predeterminadas para sus grabaciones de llamadas, transcripciones de chat, mensajes de correo electrónico, adjuntos, transcripciones de llamadas y otros datos, el sistema antepone "amazon-connect-" a esos objetos.
-
La clave de KMS aws/connect está disponible para utilizarla como opción de cifrado predeterminada. Para utilizar una clave de cifrado personalizada, asigne a los usuarios privilegios de KMS adicionales.
-
Asigne a los usuarios privilegios adicionales para adjuntar otros AWS recursos como Amazon Polly, Live Media Streaming, Data Streaming y Lex bots a sus instancias de Connect Customer.
AWS política gestionada: AmazonConnectReadOnlyAccess política
Para permitir el acceso de solo lectura, únicamente debe asociar la política AmazonConnectReadOnlyAccess.
Página de inicio de la consola Connect Customer
En la siguiente imagen se muestra un ejemplo de la página de inicio de la consola Connect Customer, con una flecha que apunta al alias de la instancia. Elige el alias de la instancia para acceder a las páginas detalladas de la instancia.
Utilice los permisos que se enumeran en la siguiente tabla para administrar el acceso a esta página.
| Action/Use caso |
Permisos necesarios |
Enumerar instancia
|
connect:ListInstances
ds:DescribeDirectories
|
Describir instancia: ver los detalles de la instancia o configuración actual
|
connect:DescribeInstance
connect:ListLambdaFunctions
connect:ListLexBots
connect:ListInstanceStorageConfigs
connect:ListApprovedOrigins
connect:ListSecurityKeys
connect:DescribeInstanceAttributes
connect:DescribeInstanceStorageConfig
ds:DescribeDirectories
|
Crear instancia
|
connect:AssociateCustomerProfilesDomain
connect:CreateInstance
connect:DescribeInstance
connect:ListInstances
connect:AssociateInstanceStorageConfig
connect:UpdateInstanceAttribute
ds:CheckAlias
ds:CreateAlias
ds:AuthorizeApplication
ds:UnauthorizeApplication
ds:CreateIdentityPoolDirectory
ds:DescribeDirectories
iam:CreateServiceLinkedRole
iam:PutRolePolicy
kms:CreateGrant
kms:DescribeKey
kms:ListAliases
kms:RetireGrant
logs:CreateLogGroup
s3:CreateBucket
s3:GetBucketLocation
s3:ListAllMyBuckets
servicequotas:GetServiceQuota
profile:CreateDomain
profile:GetDomain
profile:GetProfileObjectType
profile:ListAccountIntegrations
profile:ListDomains
profile:ListProfileObjectTypeTemplates
profile:PutIntegration
|
Eliminar instancia
|
connect:DescribeInstance
connect:DeleteInstance
connect:ListInstances
ds:DescribeDirectories
ds:DeleteDirectory
ds:UnauthorizeApplication
|
Páginas de instancias detalladas
En la siguiente imagen se muestra el menú de navegación que utiliza para acceder a cada una de las páginas de instancias detalladas.
Para acceder a las páginas detalladas de las instancias, necesita permisos para acceder a la página de inicio de la consola Connect Customer (describe/list). O utilice la política AmazonConnectReadOnlyAccess.
En las siguientes tablas se enumeran los permisos detallados para cada página de instancia.
Para realizar acciones Edit, los usuarios también necesitan los permisos List y Describe.
Página de información general
| Action/Use caso |
Permisos necesarios |
| Crear rol vinculado al servicio |
connect:DescribeInstance
connect:ListInstances
connect:DescribeInstanceAttribute
connect:UpdateInstanceAttribute
connect:ListIntegrationAssociations
profile:ListAccountIntegrations
ds:DescribeDirectories
iam:CreateServiceLinkedRole
iam:PutRolePolicy
|
Página de telefonía
| Action/Use caso |
Permisos necesarios |
| Ver opciones de telefonía |
connect:DescribeInstance
|
Enable/Disable opciones de telefonía
|
connect:UpdateInstanceAttribute
|
Ver campañas externas
|
connect-campaigns:GetConnectInstanceConfig
connect-campaigns:GetInstanceOnboardingJobStatus
connect:DescribeInstance
connect:DescribeInstanceAttribute
kms:DescribeKey
|
Enable/disable campañas salientes
|
connect-campaigns:GetConnectInstanceConfig
connect-campaigns:GetInstanceOnboardingJobStatus
connect-campaigns:StartInstanceOnboardingJob
connect-campaigns:DeleteInstanceOnboardingJob
connect-campaigns:DeleteConnectInstanceConfig
connect:DescribeInstance
connect:DescribeInstanceAttribute
connect:UpdateInstanceAttribute
iam:CreateServiceLinkedRole
iam:DeleteServiceLinkedRole
iam:AttachRolePolicy
iam:PutRolePolicy
iam:DeleteRolePolicy
events:PutRule
events:PutTargets
events:DeleteRule
events:RemoveTargets
events:DescribeRule
events:ListTargetsByRule
ds:DescribeDirectories
kms:DescribeKey
kms:ListKeys
kms:CreateGrant
kms:RetireGrant
|
Página de almacenamiento de datos
Sección de grabación de llamadas
| Action/Use caso |
Permisos necesarios |
Ver grabación de llamada |
connect:DescribeInstance
connect:ListInstanceStorageConfigs
connect:DescribeInstanceStorageConfig
|
Editar grabación de llamada
|
connect:AssociateInstanceStorageConfig
connect:UpdateInstanceStorageConfig
connect:DisassociateInstanceStorageConfig
s3:ListAllMyBuckets
s3:GetBucketLocation
s3:GetBucketAcl
s3:CreateBucket
kms:CreateGrant
kms:DescribeKey
kms:ListAliases
kms:RetireGrant
iam:PutRolePolicy
|
Sección de grabación de pantalla
| Action/Use caso |
Permisos necesarios |
Ver grabación de pantalla |
connect:DescribeInstance
connect:ListInstanceStorageConfigs
connect:DescribeInstanceStorageConfig
|
Editar grabación de pantalla
|
connect:AssociateInstanceStorageConfig
connect:UpdateInstanceStorageConfig
connect:DisassociateInstanceStorageConfig
s3:ListAllMyBuckets
s3:GetBucketLocation
s3:GetBucketAcl
s3:CreateBucket
iam:PutRolePolicy
kms:CreateGrant
kms:DescribeKey
kms:ListAliases
kms:RetireGrant
|
Sección de transcripciones de chat
| Action/Use caso |
Permisos necesarios |
Ver transcripciones de chat |
connect:DescribeInstance
connect:DescribeInstanceStorageConfig
connect:ListInstanceStorageConfigs
|
Editar transcripciones de chat |
connect:AssociateInstanceStorageConfig
connect:UpdateInstanceStorageConfig
connect:DisassociateInstanceStorageConfig
s3:ListAllMyBuckets
s3:GetBucketLocation
s3:GetBucketAcl
s3:CreateBucket
kms:CreateGrant
kms:DescribeKey
kms:ListAliases
kms:RetireGrant
iam:PutRolePolicy
|
Sección de archivos adjuntos
| Action/Use caso |
Permisos necesarios |
Ver archivos adjuntos |
connect:DescribeInstance
connect:DescribeInstanceStorageConfig
connect:ListInstanceStorageConfigs
|
Editar archivos adjuntos |
connect:AssociateInstanceStorageConfig
connect:UpdateInstanceStorageConfig
connect:DisassociateInstanceStorageConfig
s3:ListAllMyBuckets
s3:GetBucketLocation
s3:CreateBucket
s3:GetBucketAcl
kms:CreateGrant
kms:DescribeKey
kms:ListAliases
kms:RetireGrant
iam:PutRolePolicy
|
| Action/Use caso |
Permisos necesarios |
Ver streaming de medios en directo |
connect:DescribeInstance
connect:ListInstanceStorageConfigs
connect:DescribeInstanceStorageConfig
|
Editar streaming multimedia en directo |
connect:AssociateInstanceStorageConfig
connect:UpdateInstanceStorageConfig
connect:DisassociateInstanceStorageConfig
kms:CreateGrant
kms:DescribeKey
kms:RetireGrant
iam:PutRolePolicy
|
Sección de informes exportados
| Action/Use caso |
Permisos necesarios |
Ver informes exportados |
connect:DescribeInstance
connect:ListInstanceStorageConfigs
connect:DescribeInstanceStorageConfig
|
Editar informes exportados |
connect:AssociateInstanceStorageConfig
connect:UpdateInstanceStorageConfig
connect: DisassociateInstanceStorageConfig
s3:ListAllMyBuckets
s3:GetBucketLocation
s3:CreateBucket
kms:DescribeKey
kms:ListAliases
kms:RetireGrant
kms:CreateGrant
iam:PutRolePolicy
|
Página de streaming de datos
Sección de registros de contacto
| Action/Use caso |
Permisos necesarios |
Ver streaming de datos: registros de contacto |
connect:DescribeInstance
connect:ListInstanceStorageConfigs
connect:DescribeInstanceStorageConfig
|
Editar registro de contacto |
connect:AssociateInstanceStorageConfig
connect:UpdateInstanceStorageConfig
connect:DisassociateInstanceStorageConfig
firehose:ListDeliveryStreams
firehose:DescribeDeliveryStream
kinesis:ListStreams
kinesis:DescribeStream
iam:PutRolePolicy
|
Sección de eventos de agente
| Action/Use caso |
Permisos necesarios |
Ver streaming de datos: eventos de agente |
connect:DescribeInstance
connect:ListInstanceStorageConfigs
connect:DescribeInstanceStorageConfig
|
Editar eventos de agente |
connect:AssociateInstanceStorageConfig
connect:UpdateInstanceStorageConfig
connect:DisassociateInstanceStorageConfig
kinesis:ListStreams
kinesis: DescribeStream
iam:PutRolePolicy
|
Página de flujos
Sección de claves de seguridad de flujos
| Action/Use caso |
Permisos necesarios |
Ver claves de seguridad de flujo |
connect:DescribeInstance
connect:ListSecurityKeys
|
Add/remove claves de seguridad de flujo |
connect:AssociateSecurityKey
connect:DisassociateSecurityKey
|
Sección de bots de Lex
| Action/Use caso |
Permisos necesarios |
Ver bots de Lex |
connect:ListLexBots
connect:ListBots
|
Add/remove Bots Lex |
lex:GetBots
lex:GetBot
lex:CreateResourcePolicy
lex:DeleteResourcePolicy
lex:UpdateResourcePolicy
lex:DescribeBotAlias
lex:ListBotAliases
lex:ListBots
connect:AssociateBot
connect:DisassociateBot
connect:ListBots
connect:AssociateLexBot
connect:DisassociateLexBot
connect:ListLexBots
iam:PutRolePolicy
|
Sección de funciones de Lambda
| Action/Use caso |
Permisos necesarios |
Ver funciones de Lambda |
connect:ListLambdaFunctions
|
Add/remove Funciones Lambda |
connect:ListLambdaFunctions
connect:AssociateLambdaFunction
connect:DisassociateLambdaFunction
iam:PutRolePolicy
lambda:ListFunctions
lambda:AddPermission
lambda:RemovePermission
|
| Action/Use caso |
Permisos necesarios |
Ver configuración de registro de flujo |
connect:DescribeInstance
connect:DescribeInstanceAttribute
|
Enable/disable registro de flujo |
logs:CreateLogGroup
|
Sección de Amazon Polly
| Action/Use caso |
Permisos necesarios |
Opción Ver Amazon Polly |
connect:DescribeInstance
connect:DescribeInstanceAttribute
|
Opción Actualizar Amazon Polly |
connect:UpdateInstanceAttribute
|
Contact Lens página de conectores
| Action/Use caso |
Permisos necesarios |
Ver conectores de Contact Lens |
connect:ListIntegrationAssociations
chime:GetVoiceConnector
chime:GetVoiceConnectorLoggingConfiguration
chime:GetVoiceConnectorTermination
chime:GetVoiceConnectorTerminationHealth
chime:ListVoiceConnectors
chime:ListVoiceConnectorTerminationCredentials
chime:GetVoiceConnectorExternalSystemsConfiguration
|
Conectores Add/Update/Remove Contact Lens |
chime:CreateVoiceConnector
chime:DeleteVoiceConnector
chime:DeleteVoiceConnectorTermination
chime:DeleteVoiceConnectorTerminationCredentials
chime:GetVoiceConnector
chime:GetVoiceConnectorLoggingConfiguration
chime:GetVoiceConnectorTermination
chime:GetVoiceConnectorTerminationHealth
chime:ListVoiceConnectors
chime:ListVoiceConnectorTerminationCredentials
chime:PutVoiceConnectorLoggingConfiguration
chime:PutVoiceConnectorTermination
chime:PutVoiceConnectorTerminationCredentials
chime:UpdateVoiceConnector
chime:CreateConnectAnalyticsConnector
chime:PutVoiceConnectorExternalSystemsConfiguration
chime:GetVoiceConnectorExternalSystemsConfiguration
chime:DeleteVoiceConnectorExternalSystemsConfiguration
chime:AssociateVoiceConnectorConnect
chime:DisassociateVoiceConnectorConnect
chime:TagResources
chime:UntagResources
chime:ListTagsForResource
|
Página de integraciones de transferencia de voz
| Action/Use caso |
Permisos necesarios |
Visualizar conectores de transferencia de voz externos |
connect:ListIntegrationAssociations
chime:GetVoiceConnector
chime:GetVoiceConnectorLoggingConfiguration
chime:GetVoiceConnectorTermination
chime:GetVoiceConnectorTerminationHealth
chime:ListVoiceConnectors
chime:ListVoiceConnectorTerminationCredentials
chime:GetVoiceConnectorExternalSystemsConfiguration
servicequotas:GetServiceQuota
|
Add/Update/Remove conectores de transferencia de voz externos |
connect:CreateIntegrationAssociation
connect:DeleteIntegrationAssociation
connect:ListIntegrationAssociations
chime:CreateConnectCallTransferConnector
chime:CreateVoiceConnector
chime:DeleteVoiceConnector
chime:DeleteVoiceConnectorTermination
chime:DeleteVoiceConnectorTerminationCredentials
chime:GetVoiceConnector
chime:GetVoiceConnectorLoggingConfiguration
chime:GetVoiceConnectorOrigination
chime:GetVoiceConnectorTermination
chime:GetVoiceConnectorTerminationHealth
chime:ListVoiceConnectors
chime:ListVoiceConnectorTerminationCredentials
chime:PutVoiceConnectorLoggingConfiguration
chime:PutVoiceConnectorOrigination
chime:PutVoiceConnectorTermination
chime:PutVoiceConnectorTerminationCredentials
chime:UpdateVoiceConnector
chime:CreateConnectAnalyticsConnector
chime:PutVoiceConnectorExternalSystemsConfiguration
chime:GetVoiceConnectorExternalSystemsConfiguration
chime:DeleteVoiceConnectorExternalSystemsConfiguration
chime:AssociateVoiceConnectorConnect
chime:DisassociateVoiceConnectorConnect
chime:TagResources
chime:UntagResources
chime:ListTagsForResource
servicequotas:GetServiceQuota
|
Página de integración de aplicaciones
| Action/Use funda |
Permisos necesarios |
Ver los orígenes aprobados |
connect:DescribeInstance
connect:ListApprovedOrigins
|
Editar los orígenes aprobados |
connect: AssociateApprovedOrigin
connect:ListApprovedOrigins
connect:DisassociateApprovedOrigin
|
Página de Perfiles de clientes
| Action/Use caso |
Permisos necesarios |
Ver los perfiles de clientes |
app-integrations:ListEventIntegrations
appflow:DescribeConnectorEntity
appflow:DescribeConnectorProfiles
appflow:DescribeFlow
appflow:ListFlows
appflow:ListConnectorEntities
appflow:ListConnectorProfiles
cloudwatch:GetMetricData
connect:DescribeInstance
connect:ListInstances
ds:DescribeDirectories
iam:ListRoles
kinesis:DescribeStreamSummary
kms:Decrypt
kms:DescribeKey
kms:GenerateDataKey
kms:ListKeys
profile:GetCalculatedAttributeDefinition
profile:GetDomain
profile:GetEventStream
profile:GetIdentityResolutionJob
profile:GetIntegration
profile:GetProfileObjectType
profile:GetProfileObjectTypeTemplate
profile:GetWorkflow
profile:ListAccountIntegrations
profile:ListCalculatedAttributeDefinitions
profile:ListDomains
profile:ListDomainLayouts
profile:ListEventStreams
profile:ListIdentityResolutionJobs
profile:ListIntegrations
profile:ListProfileObjectTypes
profile:ListProfileObjectTypeTemplates
profile:ListRecommenders
profile:ListSegmentDefinitions
sqs:ListQueues
|
Editar perfiles de clientes |
app-integrations:CreateEventIntegration
app-integrations:ListEventIntegrations
appflow:CreateFlow
appflow:CreateConnectorProfile
appflow:DescribeFlow
appflow:DeleteFlow
appflow:DescribeConnectorEntity
appflow:DescribeConnectorProfiles
appflow:ListFlows
appflow:ListConnectorEntities
appflow:ListConnectorProfiles
appflow:StartFlow
cloudwatch:GetMetricData
connect:DescribeInstance
connect:ListInstances
ds:DescribeDirectories
events:CreateEventBus
events:DescribeEventBus
events:DescribeEventSource
events:ListEventSources
iam:CreateRole
iam:CreatePolicy
iam:AttachRolePolicy
iam:ListRoles
iam:PutRolePolicy
kinesis:DescribeStreamSummary
kinesis:ListStreams
kms:CreateGrant
kms:Decrypt
kms:DescribeKey
kms:GenerateDataKey
kms:ListAliases
kms:ListKeys
kms:ListGrants
profile:CreateCalculatedAttributeDefinition
profile:CreateDomain
profile:CreateDomainLayout
profile:CreateEventStream
profile:CreateIntegrationWorkflow
profile:CreateSegmentDefinition
profile:DeleteEventStream
profile:DeleteIntegration
profile:DeleteDomain
profile:DeleteProfileObjectType
profile:DetectProfileObjectType
profile:GetCalculatedAttributeDefinition
profile:GetDomain
profile:GetEventStream
profile:GetIdentityResolutionJob
profile:GetIntegration
profile:GetProfileObjectType
profile:GetProfileObjectTypeTemplate
profile:GetWorkflow
profile:ListAccountIntegrations
profile:ListCalculatedAttributeDefinitions
profile:ListDomains
profile:ListDomainLayouts
profile:ListEventStreams
profile:ListIdentityResolutionJobs
profile:ListIntegrations
profile:ListProfileObjectTypes
profile:ListProfileObjectTypeTemplates
profile:ListSegmentDefinitions
profile:PutIntegration
profile:PutProfileObjectType
profile:TagResource
profile:UntagResource
profile:UpdateDomain
s3:GetBucketLocation
s3:GetBucketPolicy
s3:GetObject
s3:HeadBucket
s3:ListAllMyBuckets
s3:ListBucket
s3:ListObjectsV2
s3:PutBucketPolicy
s3:SelectObjectContent
sqs:ListQueues
|
Página Tareas
| Action/Use caso |
Permisos necesarios |
Ver las integraciones de tareas |
app-integrations:GetEventIntegration
connect:ListIntegrationAssociations
|
Editar las integraciones de tareas |
app-integrations:CreateEventIntegration
app-integrations:GetEventIntegration
app-integrations:ListEventIntegrations
app-integrations:DeleteEventIntegrationAssociation
app-integrations:CreateEventIntegrationAssociation
appflow:CreateFlow
appflow:CreateConnectorProfile
appflow:DescribeFlow
appflow:DeleteFlow
appflow:DeleteConnectorProfile
appflow:DescribeConnectorEntity
appflow:ListFlows
appflow:ListConnectorEntities
appflow:StartFlow
connect:ListIntegrationAssociations
connect:DeleteIntegrationAssociation
connect:ListUseCases
connect:DeleteUseCase
events:ActivateEventSource
events:CreateEventBus
events:DescribeEventBus
events:DescribeEventSource
events:ListEventSources
events:ListTargetsByRule
events:PutRule
events:PutTargets
events:DeleteRule
events:RemoveTargets
kms:CreateGrant
kms:DescribeKey
kms:ListAliases
kms:ListKeys
kms:ListGrants
|
Página de correo electrónico
| Action/Use caso |
Permisos necesarios |
Ver dominios y direcciones de correo electrónico |
ses:GetIdentityVerificationAttributes
ses:DescribeReceiptRule
ses:DescribeActiveReceiptRuleSet
ses:GetEmailIdentity
ses:DescribeReceiptRuleSet
ses:GetConfigurationSetEventDestinations
ses:GetConfigurationSet
|
Editar dominios y direcciones de correo electrónico |
ses:CreateReceiptRule
ses:UpdateReceiptRule
ses:SetActiveReceiptRuleSet
ses:CreateReceiptRuleSet
ses:CreateEmailIdentity
ses:TagResource
ses:UntagResource
ses:DeleteReceiptRule
ses:DeleteReceiptRuleSet
ses:CloneReceiptRuleSet
ses:CreateConfigurationSet
ses:CreateConfigurationSetEventDestination
ses:PutEmailIdentityConfigurationSetAttributes
ses:CreateEmailIdentityPolicy
ses:UpdateEmailIdentityPolicy
ses:DeleteEmailIdentityPolicy
iam:CreateServiceLinkedRole
iam:PassRole
iam:CreateRole
iam:CreatePolicy
|
Página Cases
| Action/Use caso |
Permisos necesarios |
Consulta de los detalles de dominio de Cases |
connect:ListInstances
ds:DescribeDirectories
connect:ListIntegrationAssociations
cases:GetDomain
|
Incorporación a Cases |
connect:ListInstances
connect:ListIntegrationAssociations
cases:GetDomain
cases:CreateDomain
connect:CreateIntegrationAssociation
connect:DescribeInstance
iam:PutRolePolicy
|
Página de autenticación del cliente
| Action/Use caso |
Permisos necesarios |
Visualizar autenticación del cliente |
connect:ListIntegrationAssociations
cognito-idp:ListUserPools
cognito-idp:DescribeUserPool
|
Incorporar a la autenticación del cliente |
connect:CreateIntegrationAssociation
connect:DeleteIntegrationAssociation
connect:ListIntegrationAssociations
cognito-idp:ListUserPools
cognito-idp:DescribeUserPool
cognito-idp:ListUserPoolClients
cognito-idp:TagResource
cognito-idp:CreateUserPool
|
Página de campañas externas
| Acción o caso de uso |
Permisos necesarios |
| Ver campañas externas |
connect:ListIntegrationAssociations
connect:ListPhoneNumbersV2
connect:SearchEmailAddresses
connect:DescribeInstance
connect:DescribeInstanceAttribute
kms:DescribeKey
kms:ListKeys
profile:ListAccountIntegrations
profile:ListIntegrations
profile:ListDomains
profile:GetDomain
wisdom:ListKnowledgeBases
wisdom:GetKnowledgeBase
connect-campaigns:GetInstanceOnboardingJobStatus
connect-campaigns:GetConnectInstanceConfig
connect-campaigns:ListConnectInstanceIntegrations
|
| Crear campañas externas |
connect-campaigns:StartInstanceOnboardingJob
connect-campaigns:DeleteInstanceOnboardingJob
connect-campaigns:GetConnectInstanceConfig
connect-campaigns:GetInstanceOnboardingJobStatus
connect-campaigns:DeleteConnectInstanceConfig
connect:DescribeInstance
connect:DescribeInstanceAttribute
connect:UpdateInstanceAttribute
iam:CreateServiceLinkedRole
iam:DeleteServiceLinkedRole
iam:AttachRolePolicy
iam:PutRolePolicy
iam:DeleteRolePolicy
events:PutRule
events:PutTargets
events:DeleteRule
events:RemoveTargets
events:DescribeRule
events:ListTargetsByRule
ds:DescribeDirectories
kms:DescribeKey
kms:ListKeys
kms:CreateGrant
kms:RetireGrant
profile:CreateDomain
profile:ListAccountIntegrations
profile:ListIntegrations
profile:PutIntegration
profile:PutProfileObjectType
connect:CreateIntegrationAssociation
connect:ListIntegrationAssociations
connect:UpdateInstanceAttribute
connect:AssociateCustomerProfilesDomain
connect-campaigns:ListConnectInstanceIntegrations
connect-campaigns:PutConnectInstanceIntegration
wisdom:CreateKnowledgeBase
wisdom:ListKnowledgeBases
|
Página Connect AI agents
| Action/Use caso |
Permisos necesarios |
Ver dominios e integraciones |
wisdom:ListAssistantAssociations
appflow:DescribeConnectorProfiles
app-integrations:GetDataIntegration
connect:DescribeInstance
connect:DescribeInstanceAttribute
connect:ListIntegrationAssociations
kms:DescribeKey
kms:ListGrants
wisdom:GetAssistant
wisdom:GetKnowledgeBase
wisdom:ListAssistantAssociations
|
Agregar o eliminar dominios |
connect:CreateIntegrationAssociation
connect:DeleteIntegrationAssociation
connect:ListIntegrationAssociations
iam:DeleteRolePolicy
iam:PutRolePolicy
kms:CreateGrant
kms:DescribeKey
kms:ListAliases
wisdom:CreateAssistant
wisdom:DeleteAssistant
wisdom:GetAssistant
wisdom:ListAssistantAssociations
wisdom:ListAssistants
wisdom:TagResource
|
Agregar o eliminar integraciones |
wisdom:ListAssistantAssociations
app-integrations:CreateDataIntegration
app-integrations:CreateDataIntegrationAssociation
app-integrations:DeleteDataIntegrationAssociation
app-integrations:GetDataIntegration
app-integrations:ListDataIntegrations
appflow:CreateConnectorProfile
appflow:CreateFlow
appflow:DeleteFlow
appflow:DescribeConnector
appflow:DescribeConnectorEntity
appflow:DescribeConnectorProfiles
appflow:DescribeConnectors
appflow:DescribeFlow
appflow:ListConnectorEntities
appflow:StartFlow
appflow:StopFlow
appflow:TagResource
appflow:UseConnectorProfile
connect:CreateIntegrationAssociation
connect:DeleteIntegrationAssociation
connect:ListIntegrationAssociations
iam:DeleteRolePolicy
iam:PutRolePolicy
kms:CreateGrant
kms:Decrypt
kms:DescribeKey
kms:GenerateDataKey
kms:ListAliases
kms:ListGrants
secretsmanager:CreateSecret
secretsmanager:PutResourcePolicy
wisdom:CreateAssistantAssociation
wisdom:CreateKnowledgeBase
wisdom:DeleteAssistantAssociation
wisdom:DeleteKnowledgeBase
wisdom:GetAssistant
wisdom:GetKnowledgeBase
wisdom:ListAssistantAssociations
wisdom:ListKnowledgeBases
wisdom:TagResource
|
Página de Voice ID
| Action/Use caso |
Permisos necesarios |
Ver integraciones de Voice ID |
voiceid:DescribeDomain
voiceid:ListDomains
voiceid:RegisterComplianceConsent
voiceid:DescribeComplianceConsent
connect:ListIntegrationAssociations
|
Editar integraciones de Voice ID |
voiceid:DescribeDomain
voiceid:ListDomains
voiceid:RegisterComplianceConsent
voiceid:DescribeComplianceConsent
voiceid:UpdateDomain
voiceid:CreateDomain
connect:ListIntegrationAssociations
connect:CreateIntegrationAssociation
connect:DeleteIntegrationAssociation
events:PutRule
events:DeleteRule
events:PutTargets
events:RemoveTargets
iam:PutRolePolicy
|
Página de previsión, planificación de capacidad y programación
| Action/Use caso |
Permisos necesarios |
Ver previsión, planificación de la capacidad y programación |
connect:DescribeForecastingPlanningSchedulingIntegration
|
Habilitar previsión, planificación de capacidad y programación |
connect:UpdateInstanceAttribute
connect:StartForecastingPlanningSchedulingIntegration
|
Deshabilitar revisión, planificación de la capacidad y programación |
connect:UpdateInstanceAttribute
connect:StopForecastingPlanningSchedulingIntegration
|
Federaciones
Federación de SAML
| Action/Use caso |
Permisos necesarios |
Federación de SAML |
connect:GetFederationToken
|
Admin/Emergency federación
| Action/Use caso |
Permisos necesarios |
Admin/Emergency federación |
connect:AdminGetEmergencyAccessToken
|
