Overview - Granular Permissions
By leveraging AWS Identity and Access Management (IAM), we restrict API permissions to only essential actions and specific resources. This minimizes risk while ensuring compliance with industry-leading security standards.
To enable seamless integration with Amazon Connect resources, the following permissions are required:
Connect Permissions:
Contacts
Permissions: GetContactAttributes, DescribeContact, SearchContacts
Scope: Allows viewing, describing, and searching for contact data, enabling effective management of customer interactions and attributes.
Users
Permissions: DescribeUser
Scope: Grants the ability to retrieve information about Amazon Connect users for efficient user and agent management.
S3 Permissions:
Buckets and Objects
Permissions: ListBucket, GetObject
Scope: Provides access to list S3 buckets and retrieve objects stored in them, ensuring availability of call recordings and related resources.
Key Management Service Permissions (If Applicable)
Encryption Keys
Permissions: GenerateDataKey, Decrypt
Scope: Enables the generation and decryption of data keys used for securing sensitive data such as call recordings, ensuring encryption compliance.
Updated about 1 month ago