As traduções são geradas por tradução automática. Em caso de conflito entre o conteúdo da tradução e da versão original em inglês, a versão em inglês prevalecerá.
Permissões necessárias para usar políticas personalizadas do IAM para gerenciar o acesso ao console do Connect Customer
Se você estiver usando políticas personalizadas do IAM para gerenciar o acesso ao console do Connect Customer, seus usuários precisarão de algumas ou de todas as permissões listadas neste artigo, dependendo das tarefas que precisam realizar.
O uso connect:* de uma política personalizada do IAM concede a seus usuários todas as permissões do Connect Customer listadas neste artigo.
Algumas páginas no console do Connect Customer, como Tarefas e Perfis de Clientes, exigem que você adicione permissões às suas políticas em linha.
AWS política gerenciada: AmazonConnect _ FullAccess política
Para permitir read/write acesso total ao Connect Customer, você deve anexar duas políticas aos seus usuários, grupos ou funções. Anexe a AmazonConnect_FullAccess e uma política personalizada com o seguinte conteúdo:
- JSON
-
-
{
"Version":"2012-10-17",
"Statement": [
{
"Sid": "AttachAnyPolicyToAmazonConnectRole",
"Effect": "Allow",
"Action": "iam:PutRolePolicy",
"Resource": "arn:aws:iam::*:role/aws-service-role/connect.amazonaws.com/AWSServiceRoleForAmazonConnect*"
}
]
}
Para permitir que um usuário crie uma instância, verifique se ele tem as permissões concedidas pela política AmazonConnect_FullAccess.
Ao usar a política AmazonConnect_FullAccess, observe o seguinte:
-
Privilégios adicionais são necessários para criar um bucket do Amazon S3 com um nome de sua escolha ou para usar um bucket existente ao criar ou atualizar uma instância a partir Connect Customer do site administrativo. Se você escolher locais de armazenamento padrão para gravações de chamadas, transcrições de chat, mensagens de e-mail, anexos, transcrições de chamadas e outros dados, o sistema anexará "amazon-connect-" a esses objetos.
-
A chave do KMS aws/connect está disponível para uso como opção de criptografia padrão. Para usar uma chave de criptografia personalizada, atribua aos usuários outros privilégios do KMS.
-
Atribua aos usuários privilégios adicionais para vincular outros AWS recursos, como Amazon Polly, Live Media Streaming, Data Streaming e bots Lex, às suas instâncias do Connect Customer.
AWS política gerenciada: AmazonConnectReadOnlyAccess política
Para conceder acesso somente leitura, anexe somente a política AmazonConnectReadOnlyAccess.
Página inicial do console Connect Customer
A imagem a seguir mostra um exemplo da página inicial do console Connect Customer, com uma seta apontando para o alias da instância. Escolha o alias da instância para navegar até as páginas detalhadas da instância.
Use as permissões listadas na tabela a seguir para gerenciar o acesso a essa página.
| Action/Use caso |
Permissões necessárias |
Listar instância
|
connect:ListInstances
ds:DescribeDirectories
|
Descrever a instância: veja os detalhes da instância e configurações atuais
|
connect:DescribeInstance
connect:ListLambdaFunctions
connect:ListLexBots
connect:ListInstanceStorageConfigs
connect:ListApprovedOrigins
connect:ListSecurityKeys
connect:DescribeInstanceAttributes
connect:DescribeInstanceStorageConfig
ds:DescribeDirectories
|
Criar instância
|
connect:AssociateCustomerProfilesDomain
connect:CreateInstance
connect:DescribeInstance
connect:ListInstances
connect:AssociateInstanceStorageConfig
connect:UpdateInstanceAttribute
ds:CheckAlias
ds:CreateAlias
ds:AuthorizeApplication
ds:UnauthorizeApplication
ds:CreateIdentityPoolDirectory
ds:DescribeDirectories
iam:CreateServiceLinkedRole
iam:PutRolePolicy
kms:CreateGrant
kms:DescribeKey
kms:ListAliases
kms:RetireGrant
logs:CreateLogGroup
s3:CreateBucket
s3:GetBucketLocation
s3:ListAllMyBuckets
servicequotas:GetServiceQuota
profile:CreateDomain
profile:GetDomain
profile:GetProfileObjectType
profile:ListAccountIntegrations
profile:ListDomains
profile:ListProfileObjectTypeTemplates
profile:PutIntegration
|
Excluir instância
|
connect:DescribeInstance
connect:DeleteInstance
connect:ListInstances
ds:DescribeDirectories
ds:DeleteDirectory
ds:UnauthorizeApplication
|
Páginas de instância detalhadas
A imagem a seguir mostra o menu de navegação que você usa para acessar cada uma das páginas detalhadas da instância.
Para acessar as páginas detalhadas da instância, você precisa de permissões na página inicial do console Connect Customer (describe/list). Ou use a política AmazonConnectReadOnlyAccess.
As tabelas a seguir listam as permissões detalhadas para cada página pormenorizada da instância.
Para realizar ações Edit, os usuários também precisam das permissões List e Describe.
Página Visão geral
| Action/Use caso |
Permissões necessárias |
| Criar funções vinculadas ao serviço |
connect:DescribeInstance
connect:ListInstances
connect:DescribeInstanceAttribute
connect:UpdateInstanceAttribute
connect:ListIntegrationAssociations
profile:ListAccountIntegrations
ds:DescribeDirectories
iam:CreateServiceLinkedRole
iam:PutRolePolicy
|
Página de telefonia
| Action/Use caso |
Permissões necessárias |
| Exibir opções de telefonia |
connect:DescribeInstance
|
Enable/Disable opções de telefonia
|
connect:UpdateInstanceAttribute
|
Exibir campanhas externas
|
connect-campaigns:GetConnectInstanceConfig
connect-campaigns:GetInstanceOnboardingJobStatus
connect:DescribeInstance
connect:DescribeInstanceAttribute
kms:DescribeKey
|
Enable/disable campanhas externas
|
connect-campaigns:GetConnectInstanceConfig
connect-campaigns:GetInstanceOnboardingJobStatus
connect-campaigns:StartInstanceOnboardingJob
connect-campaigns:DeleteInstanceOnboardingJob
connect-campaigns:DeleteConnectInstanceConfig
connect:DescribeInstance
connect:DescribeInstanceAttribute
connect:UpdateInstanceAttribute
iam:CreateServiceLinkedRole
iam:DeleteServiceLinkedRole
iam:AttachRolePolicy
iam:PutRolePolicy
iam:DeleteRolePolicy
events:PutRule
events:PutTargets
events:DeleteRule
events:RemoveTargets
events:DescribeRule
events:ListTargetsByRule
ds:DescribeDirectories
kms:DescribeKey
kms:ListKeys
kms:CreateGrant
kms:RetireGrant
|
Página de armazenamento de dados
Seção de gravação de chamadas
| Action/Use caso |
Permissões necessárias |
Exibir gravação de chamadas |
connect:DescribeInstance
connect:ListInstanceStorageConfigs
connect:DescribeInstanceStorageConfig
|
Editar gravação de chamadas
|
connect:AssociateInstanceStorageConfig
connect:UpdateInstanceStorageConfig
connect:DisassociateInstanceStorageConfig
s3:ListAllMyBuckets
s3:GetBucketLocation
s3:GetBucketAcl
s3:CreateBucket
kms:CreateGrant
kms:DescribeKey
kms:ListAliases
kms:RetireGrant
iam:PutRolePolicy
|
Seção de gravação de tela
| Action/Use caso |
Permissões necessárias |
Exibir gravação de tela |
connect:DescribeInstance
connect:ListInstanceStorageConfigs
connect:DescribeInstanceStorageConfig
|
Editar gravação de tela
|
connect:AssociateInstanceStorageConfig
connect:UpdateInstanceStorageConfig
connect:DisassociateInstanceStorageConfig
s3:ListAllMyBuckets
s3:GetBucketLocation
s3:GetBucketAcl
s3:CreateBucket
iam:PutRolePolicy
kms:CreateGrant
kms:DescribeKey
kms:ListAliases
kms:RetireGrant
|
Seção de transcrições de chat
| Action/Use caso |
Permissões necessárias |
Exibir transcrições de chat |
connect:DescribeInstance
connect:DescribeInstanceStorageConfig
connect:ListInstanceStorageConfigs
|
Editar transcrições de chat |
connect:AssociateInstanceStorageConfig
connect:UpdateInstanceStorageConfig
connect:DisassociateInstanceStorageConfig
s3:ListAllMyBuckets
s3:GetBucketLocation
s3:GetBucketAcl
s3:CreateBucket
kms:CreateGrant
kms:DescribeKey
kms:ListAliases
kms:RetireGrant
iam:PutRolePolicy
|
Seção de anexos
| Action/Use caso |
Permissões necessárias |
Visualizar anexos |
connect:DescribeInstance
connect:DescribeInstanceStorageConfig
connect:ListInstanceStorageConfigs
|
Editar anexos |
connect:AssociateInstanceStorageConfig
connect:UpdateInstanceStorageConfig
connect:DisassociateInstanceStorageConfig
s3:ListAllMyBuckets
s3:GetBucketLocation
s3:CreateBucket
s3:GetBucketAcl
kms:CreateGrant
kms:DescribeKey
kms:ListAliases
kms:RetireGrant
iam:PutRolePolicy
|
| Action/Use caso |
Permissões necessárias |
Exibir streaming de mídia ao vivo |
connect:DescribeInstance
connect:ListInstanceStorageConfigs
connect:DescribeInstanceStorageConfig
|
Editar streaming de mídia ao vivo |
connect:AssociateInstanceStorageConfig
connect:UpdateInstanceStorageConfig
connect:DisassociateInstanceStorageConfig
kms:CreateGrant
kms:DescribeKey
kms:RetireGrant
iam:PutRolePolicy
|
Seção de relatórios exportados
| Action/Use caso |
Permissões necessárias |
Exibir relatórios exportados |
connect:DescribeInstance
connect:ListInstanceStorageConfigs
connect:DescribeInstanceStorageConfig
|
Editar relatórios exportados |
connect:AssociateInstanceStorageConfig
connect:UpdateInstanceStorageConfig
connect: DisassociateInstanceStorageConfig
s3:ListAllMyBuckets
s3:GetBucketLocation
s3:CreateBucket
kms:DescribeKey
kms:ListAliases
kms:RetireGrant
kms:CreateGrant
iam:PutRolePolicy
|
Página de streaming de dados
Seção Registros de contato
| Action/Use caso |
Permissões necessárias |
Exibir streaming de dados: registros de contato |
connect:DescribeInstance
connect:ListInstanceStorageConfigs
connect:DescribeInstanceStorageConfig
|
Editar registro de contato |
connect:AssociateInstanceStorageConfig
connect:UpdateInstanceStorageConfig
connect:DisassociateInstanceStorageConfig
firehose:ListDeliveryStreams
firehose:DescribeDeliveryStream
kinesis:ListStreams
kinesis:DescribeStream
iam:PutRolePolicy
|
Seção de eventos do atendente
| Action/Use caso |
Permissões necessárias |
Exibir streaming de dados: eventos do atendente |
connect:DescribeInstance
connect:ListInstanceStorageConfigs
connect:DescribeInstanceStorageConfig
|
Editar eventos do atendente |
connect:AssociateInstanceStorageConfig
connect:UpdateInstanceStorageConfig
connect:DisassociateInstanceStorageConfig
kinesis:ListStreams
kinesis: DescribeStream
iam:PutRolePolicy
|
Página Fluxos
Seção de chaves de segurança de fluxos
| Action/Use caso |
Permissões necessárias |
Exibir chaves de segurança de fluxo |
connect:DescribeInstance
connect:ListSecurityKeys
|
Add/remove chaves de segurança de fluxo |
connect:AssociateSecurityKey
connect:DisassociateSecurityKey
|
Seção de bots Lex
| Action/Use caso |
Permissões necessárias |
Exibir bots Lex |
connect:ListLexBots
connect:ListBots
|
Add/remove Botas Lex |
lex:GetBots
lex:GetBot
lex:CreateResourcePolicy
lex:DeleteResourcePolicy
lex:UpdateResourcePolicy
lex:DescribeBotAlias
lex:ListBotAliases
lex:ListBots
connect:AssociateBot
connect:DisassociateBot
connect:ListBots
connect:AssociateLexBot
connect:DisassociateLexBot
connect:ListLexBots
iam:PutRolePolicy
|
Seção de funções do Lambda
| Action/Use caso |
Permissões necessárias |
Exibir funções do Lambda |
connect:ListLambdaFunctions
|
Add/remove Funções Lambda |
connect:ListLambdaFunctions
connect:AssociateLambdaFunction
connect:DisassociateLambdaFunction
iam:PutRolePolicy
lambda:ListFunctions
lambda:AddPermission
lambda:RemovePermission
|
| Action/Use caso |
Permissões necessárias |
Exibir configuração de log de fluxo |
connect:DescribeInstance
connect:DescribeInstanceAttribute
|
Enable/disable registro de fluxo |
logs:CreateLogGroup
|
Seção Amazon Polly
| Action/Use caso |
Permissões necessárias |
Exibir a opção Amazon Polly |
connect:DescribeInstance
connect:DescribeInstanceAttribute
|
Atualizar a opção Amazon Polly |
connect:UpdateInstanceAttribute
|
Contact Lens página de conectores
| Action/Use caso |
Permissões necessárias |
Visualizar conectores do Contact Lens |
connect:ListIntegrationAssociations
chime:GetVoiceConnector
chime:GetVoiceConnectorLoggingConfiguration
chime:GetVoiceConnectorTermination
chime:GetVoiceConnectorTerminationHealth
chime:ListVoiceConnectors
chime:ListVoiceConnectorTerminationCredentials
chime:GetVoiceConnectorExternalSystemsConfiguration
|
conectores do Add/Update/Remove Contact Lens |
chime:CreateVoiceConnector
chime:DeleteVoiceConnector
chime:DeleteVoiceConnectorTermination
chime:DeleteVoiceConnectorTerminationCredentials
chime:GetVoiceConnector
chime:GetVoiceConnectorLoggingConfiguration
chime:GetVoiceConnectorTermination
chime:GetVoiceConnectorTerminationHealth
chime:ListVoiceConnectors
chime:ListVoiceConnectorTerminationCredentials
chime:PutVoiceConnectorLoggingConfiguration
chime:PutVoiceConnectorTermination
chime:PutVoiceConnectorTerminationCredentials
chime:UpdateVoiceConnector
chime:CreateConnectAnalyticsConnector
chime:PutVoiceConnectorExternalSystemsConfiguration
chime:GetVoiceConnectorExternalSystemsConfiguration
chime:DeleteVoiceConnectorExternalSystemsConfiguration
chime:AssociateVoiceConnectorConnect
chime:DisassociateVoiceConnectorConnect
chime:TagResources
chime:UntagResources
chime:ListTagsForResource
|
Página de integrações para transferência de voz
| Action/Use caso |
Permissões necessárias |
Visualizar conectores externos para transferência de voz |
connect:ListIntegrationAssociations
chime:GetVoiceConnector
chime:GetVoiceConnectorLoggingConfiguration
chime:GetVoiceConnectorTermination
chime:GetVoiceConnectorTerminationHealth
chime:ListVoiceConnectors
chime:ListVoiceConnectorTerminationCredentials
chime:GetVoiceConnectorExternalSystemsConfiguration
servicequotas:GetServiceQuota
|
Add/Update/Remove conectores externos de transferência de voz |
connect:CreateIntegrationAssociation
connect:DeleteIntegrationAssociation
connect:ListIntegrationAssociations
chime:CreateConnectCallTransferConnector
chime:CreateVoiceConnector
chime:DeleteVoiceConnector
chime:DeleteVoiceConnectorTermination
chime:DeleteVoiceConnectorTerminationCredentials
chime:GetVoiceConnector
chime:GetVoiceConnectorLoggingConfiguration
chime:GetVoiceConnectorOrigination
chime:GetVoiceConnectorTermination
chime:GetVoiceConnectorTerminationHealth
chime:ListVoiceConnectors
chime:ListVoiceConnectorTerminationCredentials
chime:PutVoiceConnectorLoggingConfiguration
chime:PutVoiceConnectorOrigination
chime:PutVoiceConnectorTermination
chime:PutVoiceConnectorTerminationCredentials
chime:UpdateVoiceConnector
chime:CreateConnectAnalyticsConnector
chime:PutVoiceConnectorExternalSystemsConfiguration
chime:GetVoiceConnectorExternalSystemsConfiguration
chime:DeleteVoiceConnectorExternalSystemsConfiguration
chime:AssociateVoiceConnectorConnect
chime:DisassociateVoiceConnectorConnect
chime:TagResources
chime:UntagResources
chime:ListTagsForResource
servicequotas:GetServiceQuota
|
Página Integração de aplicativos
| Action/Use caso |
Permissões necessárias |
Exibir origens aprovadas |
connect:DescribeInstance
connect:ListApprovedOrigins
|
Editar origens aprovadas |
connect: AssociateApprovedOrigin
connect:ListApprovedOrigins
connect:DisassociateApprovedOrigin
|
Página Perfis de clientes
| Action/Use caso |
Permissões necessárias |
Exibir perfis de clientes |
app-integrations:ListEventIntegrations
appflow:DescribeConnectorEntity
appflow:DescribeConnectorProfiles
appflow:DescribeFlow
appflow:ListFlows
appflow:ListConnectorEntities
appflow:ListConnectorProfiles
cloudwatch:GetMetricData
connect:DescribeInstance
connect:ListInstances
ds:DescribeDirectories
iam:ListRoles
kinesis:DescribeStreamSummary
kms:Decrypt
kms:DescribeKey
kms:GenerateDataKey
kms:ListKeys
profile:GetCalculatedAttributeDefinition
profile:GetDomain
profile:GetEventStream
profile:GetIdentityResolutionJob
profile:GetIntegration
profile:GetProfileObjectType
profile:GetProfileObjectTypeTemplate
profile:GetWorkflow
profile:ListAccountIntegrations
profile:ListCalculatedAttributeDefinitions
profile:ListDomains
profile:ListDomainLayouts
profile:ListEventStreams
profile:ListIdentityResolutionJobs
profile:ListIntegrations
profile:ListProfileObjectTypes
profile:ListProfileObjectTypeTemplates
profile:ListRecommenders
profile:ListSegmentDefinitions
sqs:ListQueues
|
Editar perfis de clientes |
app-integrations:CreateEventIntegration
app-integrations:ListEventIntegrations
appflow:CreateFlow
appflow:CreateConnectorProfile
appflow:DescribeFlow
appflow:DeleteFlow
appflow:DescribeConnectorEntity
appflow:DescribeConnectorProfiles
appflow:ListFlows
appflow:ListConnectorEntities
appflow:ListConnectorProfiles
appflow:StartFlow
cloudwatch:GetMetricData
connect:DescribeInstance
connect:ListInstances
ds:DescribeDirectories
events:CreateEventBus
events:DescribeEventBus
events:DescribeEventSource
events:ListEventSources
iam:CreateRole
iam:CreatePolicy
iam:AttachRolePolicy
iam:ListRoles
iam:PutRolePolicy
kinesis:DescribeStreamSummary
kinesis:ListStreams
kms:CreateGrant
kms:Decrypt
kms:DescribeKey
kms:GenerateDataKey
kms:ListAliases
kms:ListKeys
kms:ListGrants
profile:CreateCalculatedAttributeDefinition
profile:CreateDomain
profile:CreateDomainLayout
profile:CreateEventStream
profile:CreateIntegrationWorkflow
profile:CreateSegmentDefinition
profile:DeleteEventStream
profile:DeleteIntegration
profile:DeleteDomain
profile:DeleteProfileObjectType
profile:DetectProfileObjectType
profile:GetCalculatedAttributeDefinition
profile:GetDomain
profile:GetEventStream
profile:GetIdentityResolutionJob
profile:GetIntegration
profile:GetProfileObjectType
profile:GetProfileObjectTypeTemplate
profile:GetWorkflow
profile:ListAccountIntegrations
profile:ListCalculatedAttributeDefinitions
profile:ListDomains
profile:ListDomainLayouts
profile:ListEventStreams
profile:ListIdentityResolutionJobs
profile:ListIntegrations
profile:ListProfileObjectTypes
profile:ListProfileObjectTypeTemplates
profile:ListSegmentDefinitions
profile:PutIntegration
profile:PutProfileObjectType
profile:TagResource
profile:UntagResource
profile:UpdateDomain
s3:GetBucketLocation
s3:GetBucketPolicy
s3:GetObject
s3:HeadBucket
s3:ListAllMyBuckets
s3:ListBucket
s3:ListObjectsV2
s3:PutBucketPolicy
s3:SelectObjectContent
sqs:ListQueues
|
Página Tasks
| Action/Use caso |
Permissões necessárias |
Exibir integrações de tarefas |
app-integrations:GetEventIntegration
connect:ListIntegrationAssociations
|
Editar integrações de tarefas |
app-integrations:CreateEventIntegration
app-integrations:GetEventIntegration
app-integrations:ListEventIntegrations
app-integrations:DeleteEventIntegrationAssociation
app-integrations:CreateEventIntegrationAssociation
appflow:CreateFlow
appflow:CreateConnectorProfile
appflow:DescribeFlow
appflow:DeleteFlow
appflow:DeleteConnectorProfile
appflow:DescribeConnectorEntity
appflow:ListFlows
appflow:ListConnectorEntities
appflow:StartFlow
connect:ListIntegrationAssociations
connect:DeleteIntegrationAssociation
connect:ListUseCases
connect:DeleteUseCase
events:ActivateEventSource
events:CreateEventBus
events:DescribeEventBus
events:DescribeEventSource
events:ListEventSources
events:ListTargetsByRule
events:PutRule
events:PutTargets
events:DeleteRule
events:RemoveTargets
kms:CreateGrant
kms:DescribeKey
kms:ListAliases
kms:ListKeys
kms:ListGrants
|
Página de e-mail
| Action/Use caso |
Permissões necessárias |
Visualizar domínios e endereços de e-mail |
ses:GetIdentityVerificationAttributes
ses:DescribeReceiptRule
ses:DescribeActiveReceiptRuleSet
ses:GetEmailIdentity
ses:DescribeReceiptRuleSet
ses:GetConfigurationSetEventDestinations
ses:GetConfigurationSet
|
Editar domínios e endereços de e-mail |
ses:CreateReceiptRule
ses:UpdateReceiptRule
ses:SetActiveReceiptRuleSet
ses:CreateReceiptRuleSet
ses:CreateEmailIdentity
ses:TagResource
ses:UntagResource
ses:DeleteReceiptRule
ses:DeleteReceiptRuleSet
ses:CloneReceiptRuleSet
ses:CreateConfigurationSet
ses:CreateConfigurationSetEventDestination
ses:PutEmailIdentityConfigurationSetAttributes
ses:CreateEmailIdentityPolicy
ses:UpdateEmailIdentityPolicy
ses:DeleteEmailIdentityPolicy
iam:CreateServiceLinkedRole
iam:PassRole
iam:CreateRole
iam:CreatePolicy
|
Páginas Casos
| Action/Use caso |
Permissões necessárias |
Visualizar detalhes de um domínio do Chamados |
connect:ListInstances
ds:DescribeDirectories
connect:ListIntegrationAssociations
cases:GetDomain
|
Integração com Chamados |
connect:ListInstances
connect:ListIntegrationAssociations
cases:GetDomain
cases:CreateDomain
connect:CreateIntegrationAssociation
connect:DescribeInstance
iam:PutRolePolicy
|
Página de autenticação do cliente
| Action/Use caso |
Permissões necessárias |
Visualizar autenticação do cliente |
connect:ListIntegrationAssociations
cognito-idp:ListUserPools
cognito-idp:DescribeUserPool
|
Integração para autenticação do cliente |
connect:CreateIntegrationAssociation
connect:DeleteIntegrationAssociation
connect:ListIntegrationAssociations
cognito-idp:ListUserPools
cognito-idp:DescribeUserPool
cognito-idp:ListUserPoolClients
cognito-idp:TagResource
cognito-idp:CreateUserPool
|
Página de campanhas externas
| Ação/caso de uso |
Permissões necessárias |
| Exibir campanhas externas |
connect:ListIntegrationAssociations
connect:ListPhoneNumbersV2
connect:SearchEmailAddresses
connect:DescribeInstance
connect:DescribeInstanceAttribute
kms:DescribeKey
kms:ListKeys
profile:ListAccountIntegrations
profile:ListIntegrations
profile:ListDomains
profile:GetDomain
wisdom:ListKnowledgeBases
wisdom:GetKnowledgeBase
connect-campaigns:GetInstanceOnboardingJobStatus
connect-campaigns:GetConnectInstanceConfig
connect-campaigns:ListConnectInstanceIntegrations
|
| Criar campanhas externas |
connect-campaigns:StartInstanceOnboardingJob
connect-campaigns:DeleteInstanceOnboardingJob
connect-campaigns:GetConnectInstanceConfig
connect-campaigns:GetInstanceOnboardingJobStatus
connect-campaigns:DeleteConnectInstanceConfig
connect:DescribeInstance
connect:DescribeInstanceAttribute
connect:UpdateInstanceAttribute
iam:CreateServiceLinkedRole
iam:DeleteServiceLinkedRole
iam:AttachRolePolicy
iam:PutRolePolicy
iam:DeleteRolePolicy
events:PutRule
events:PutTargets
events:DeleteRule
events:RemoveTargets
events:DescribeRule
events:ListTargetsByRule
ds:DescribeDirectories
kms:DescribeKey
kms:ListKeys
kms:CreateGrant
kms:RetireGrant
profile:CreateDomain
profile:ListAccountIntegrations
profile:ListIntegrations
profile:PutIntegration
profile:PutProfileObjectType
connect:CreateIntegrationAssociation
connect:ListIntegrationAssociations
connect:UpdateInstanceAttribute
connect:AssociateCustomerProfilesDomain
connect-campaigns:ListConnectInstanceIntegrations
connect-campaigns:PutConnectInstanceIntegration
wisdom:CreateKnowledgeBase
wisdom:ListKnowledgeBases
|
Página de agentes Connect AI
| Action/Use caso |
Permissões necessárias |
Exibir domínios e integrações |
wisdom:ListAssistantAssociations
appflow:DescribeConnectorProfiles
app-integrations:GetDataIntegration
connect:DescribeInstance
connect:DescribeInstanceAttribute
connect:ListIntegrationAssociations
kms:DescribeKey
kms:ListGrants
wisdom:GetAssistant
wisdom:GetKnowledgeBase
wisdom:ListAssistantAssociations
|
Adicionar ou remover domínios |
connect:CreateIntegrationAssociation
connect:DeleteIntegrationAssociation
connect:ListIntegrationAssociations
iam:DeleteRolePolicy
iam:PutRolePolicy
kms:CreateGrant
kms:DescribeKey
kms:ListAliases
wisdom:CreateAssistant
wisdom:DeleteAssistant
wisdom:GetAssistant
wisdom:ListAssistantAssociations
wisdom:ListAssistants
wisdom:TagResource
|
Adicionar ou remover integrações |
wisdom:ListAssistantAssociations
app-integrations:CreateDataIntegration
app-integrations:CreateDataIntegrationAssociation
app-integrations:DeleteDataIntegrationAssociation
app-integrations:GetDataIntegration
app-integrations:ListDataIntegrations
appflow:CreateConnectorProfile
appflow:CreateFlow
appflow:DeleteFlow
appflow:DescribeConnector
appflow:DescribeConnectorEntity
appflow:DescribeConnectorProfiles
appflow:DescribeConnectors
appflow:DescribeFlow
appflow:ListConnectorEntities
appflow:StartFlow
appflow:StopFlow
appflow:TagResource
appflow:UseConnectorProfile
connect:CreateIntegrationAssociation
connect:DeleteIntegrationAssociation
connect:ListIntegrationAssociations
iam:DeleteRolePolicy
iam:PutRolePolicy
kms:CreateGrant
kms:Decrypt
kms:DescribeKey
kms:GenerateDataKey
kms:ListAliases
kms:ListGrants
secretsmanager:CreateSecret
secretsmanager:PutResourcePolicy
wisdom:CreateAssistantAssociation
wisdom:CreateKnowledgeBase
wisdom:DeleteAssistantAssociation
wisdom:DeleteKnowledgeBase
wisdom:GetAssistant
wisdom:GetKnowledgeBase
wisdom:ListAssistantAssociations
wisdom:ListKnowledgeBases
wisdom:TagResource
|
Página Voice ID
| Action/Use caso |
Permissões necessárias |
Exibir integrações do Voice ID |
voiceid:DescribeDomain
voiceid:ListDomains
voiceid:RegisterComplianceConsent
voiceid:DescribeComplianceConsent
connect:ListIntegrationAssociations
|
Editar integrações do Voice ID |
voiceid:DescribeDomain
voiceid:ListDomains
voiceid:RegisterComplianceConsent
voiceid:DescribeComplianceConsent
voiceid:UpdateDomain
voiceid:CreateDomain
connect:ListIntegrationAssociations
connect:CreateIntegrationAssociation
connect:DeleteIntegrationAssociation
events:PutRule
events:DeleteRule
events:PutTargets
events:RemoveTargets
iam:PutRolePolicy
|
Página de previsão, planejamento de capacidade e programação
| Action/Use caso |
Permissões necessárias |
Exibir previsão, planejamento de capacidade e programação |
connect:DescribeForecastingPlanningSchedulingIntegration
|
Habilitar previsão, planejamento de capacidade e programação |
connect:UpdateInstanceAttribute
connect:StartForecastingPlanningSchedulingIntegration
|
Desabilitar previsão, planejamento de capacidade e programação |
connect:UpdateInstanceAttribute
connect:StopForecastingPlanningSchedulingIntegration
|
Federações
Federação do SAML
| Action/Use caso |
Permissões necessárias |
Federação do SAML |
connect:GetFederationToken
|
Admin/Emergency federação
| Action/Use caso |
Permissões necessárias |
Admin/Emergency federação |
connect:AdminGetEmergencyAccessToken
|
