AWS Security ChangesHomeSearch

AWS connect documentation change

Service: connect · 2025-08-28 · Documentation medium

File: connect/latest/adminguide/set-voice.md

Summary

Added IAM policy requirements for instances migrated to Service Linked Roles to access Polly's SynthesizeSpeech API

Security assessment

The change documents required IAM permissions for proper feature functionality, which is security-related configuration guidance. However, there's no evidence this addresses an existing security vulnerability - it appears to be proactive documentation of required permissions for a feature.

Diff

diff --git a/connect/latest/adminguide/set-voice.md b/connect/latest/adminguide/set-voice.md
index 52c15535c..03d044904 100644
--- a//connect/latest/adminguide/set-voice.md
+++ b//connect/latest/adminguide/set-voice.md
@@ -37,0 +38,17 @@ This topic defines the flow block for setting the text-to-speech (TTS) language
+###### Note
+
+If your instance was created before October 2018 and you have since migrated to a Service Linked Role (SLR), you need to add the following custom permissions to your Service Role (SR) to access the Generative engines.
+    
+    
+    {
+       "Sid": "AllowPollyActions",
+       "Effect": "Allow",
+       "Action": [
+           "polly:SynthesizeSpeech"
+       ],
+       "Resource": [
+           "*"
+       ]
+    }                    
+                    
+