AWS connect documentation change
Summary
Renamed all occurrences of 'Amazon Connect' to 'Connect Customer' throughout the document including service names, features, and console references.
Security assessment
The changes are purely branding/naming updates without modifying security permissions, policies, or access controls. No vulnerabilities or security improvements are addressed. The core IAM policies and security guidance remain unchanged.
Diff
diff --git a/connect/latest/adminguide/security_iam_awsmanpol.md b/connect/latest/adminguide/security_iam_awsmanpol.md index 584fd5cd6..345c1176c 100644 --- a//connect/latest/adminguide/security_iam_awsmanpol.md +++ b//connect/latest/adminguide/security_iam_awsmanpol.md @@ -9 +9 @@ AmazonConnect_FullAccessAmazonConnectReadOnlyAccessAmazonConnectServiceLinkedRol -# AWS managed policies for Amazon Connect +# AWS managed policies for Connect Customer @@ -19 +19 @@ Additionally, AWS supports managed policies for job functions that span multiple -To allow full read/write access to Amazon Connect, you must attach two policies to your IAM users, groups, or roles. Attach the `AmazonConnect_FullAccess` policy and a custom policy to have full access to Amazon Connect. +To allow full read/write access to Connect Customer, you must attach two policies to your IAM users, groups, or roles. Attach the `AmazonConnect_FullAccess` policy and a custom policy to have full access to Connect Customer. @@ -49 +49 @@ When you use `AmazonConnect_FullAccess` policy, note the following: - * The custom policy that contains the `iam:PutRolePolicy` action, allows the user with this policy assigned to configure any resource in the account to work with an Amazon Connect instance. Since this added action grants such broad permissions, only assign it when necessary. As an alternative, you can create the service-linked role with access to the necessary resources and let the user have access to pass the service-linked role to Amazon Connect (which is granted by the `AmazonConnect_FullAccess` policy). + * The custom policy that contains the `iam:PutRolePolicy` action, allows the user with this policy assigned to configure any resource in the account to work with an Connect Customer instance. Since this added action grants such broad permissions, only assign it when necessary. As an alternative, you can create the service-linked role with access to the necessary resources and let the user have access to pass the service-linked role to Connect Customer (which is granted by the `AmazonConnect_FullAccess` policy). @@ -51 +51 @@ When you use `AmazonConnect_FullAccess` policy, note the following: - * Additional privileges are required to create a Amazon S3 bucket with a name of your choosing, or use an existing bucket while creating or updating an instance from the Amazon Connect admin website. If you choose default storage locations for your call recordings, chat transcripts, call transcripts, and other data, the system prepends "amazon-connect-" to the names of those objects. + * Additional privileges are required to create a Amazon S3 bucket with a name of your choosing, or use an existing bucket while creating or updating an instance from the Connect Customer admin website. If you choose default storage locations for your call recordings, chat transcripts, call transcripts, and other data, the system prepends "amazon-connect-" to the names of those objects. @@ -55 +55 @@ When you use `AmazonConnect_FullAccess` policy, note the following: - * Assign users additional privileges to attach other AWS resources like Amazon Polly, Live Media Streaming, Data Streaming, and Lex bots to their Amazon Connect instances. + * Assign users additional privileges to attach other AWS resources like Amazon Polly, Live Media Streaming, Data Streaming, and Lex bots to their Connect Customer instances. @@ -60 +60 @@ When you use `AmazonConnect_FullAccess` policy, note the following: -For more information and detailed permissions, see [Required permissions for using custom IAM policies to manage access to the Amazon Connect console](./security-iam-amazon-connect-permissions.html). +For more information and detailed permissions, see [Required permissions for using custom IAM policies to manage access to the Connect Customer console](./security-iam-amazon-connect-permissions.html). @@ -70 +70 @@ To view the permissions for this policy, see [AmazonConnectReadOnlyAccess](https -This policy is attached to the service-linked role named `AWSServiceRoleForAmazonConnect` to allow Amazon Connect to perform various actions on specified resources. As you enable additional features in Amazon Connect, additional permissions are added for the [AWSServiceRoleForAmazonConnect](https://docs.aws.amazon.com/connect/latest/adminguide/connect-slr.html#slr-permissions) service-linked role to access the resources associated with those features. +This policy is attached to the service-linked role named `AWSServiceRoleForAmazonConnect` to allow Connect Customer to perform various actions on specified resources. As you enable additional features in Connect Customer, additional permissions are added for the [AWSServiceRoleForAmazonConnect](https://docs.aws.amazon.com/connect/latest/adminguide/connect-slr.html#slr-permissions) service-linked role to access the resources associated with those features. @@ -76 +76 @@ To view the permissions for this policy, see [AmazonConnectServiceLinkedRolePoli -The `AmazonConnectCampaignsServiceLinkedRolePolicy` role permissions policy allows Amazon Connect outbound campaigns to perform various actions on specified resources. As you enable additional features in Amazon Connect, additional permissions are added for the [AWSServiceRoleForConnectCampaigns](https://docs.aws.amazon.com/connect/latest/adminguide/connect-slr-outbound.html#slr-permissions-outbound) service-linked role to access the resources associated with those features. +The `AmazonConnectCampaignsServiceLinkedRolePolicy` role permissions policy allows Connect Customer outbound campaigns to perform various actions on specified resources. As you enable additional features in Connect Customer, additional permissions are added for the [AWSServiceRoleForConnectCampaigns](https://docs.aws.amazon.com/connect/latest/adminguide/connect-slr-outbound.html#slr-permissions-outbound) service-linked role to access the resources associated with those features. @@ -82 +82 @@ To view the permissions for this policy, see [AmazonConnectCampaignsServiceLinke -To allow full access to Amazon Connect Voice ID, you must attach two policies to your users, groups, or roles. Attach the `AmazonConnectVoiceIDFullAccess` policy and a custom policy to access Voice ID through the Amazon Connect admin website. +To allow full access to Connect Customer Voice ID, you must attach two policies to your users, groups, or roles. Attach the `AmazonConnectVoiceIDFullAccess` policy and a custom policy to access Voice ID through the Connect Customer admin website. @@ -134 +134 @@ The custom policy configures the following: - * The `iam:PutRolePolicy` allows the user who gets that policy to configure any resource in the account to work with the Amazon Connect instance. Due to its broad scope, grant this permission only when absolutely necessary. + * The `iam:PutRolePolicy` allows the user who gets that policy to configure any resource in the account to work with the Connect Customer instance. Due to its broad scope, grant this permission only when absolutely necessary. @@ -136 +136 @@ The custom policy configures the following: - * Attaching a Voice ID domain to an Amazon Connect instance requires additional Amazon Connect and Amazon EventBridge permissions. You need permissions to call Amazon Connect APIs for creating, deleting, and listing integration associations. Additionally, EventBridge permissions are required to create and delete rules that provide contact records related to Voice ID. + * Attaching a Voice ID domain to an Connect Customer instance requires additional Connect Customer and Amazon EventBridge permissions. You need permissions to call Connect Customer APIs for creating, deleting, and listing integration associations. Additionally, EventBridge permissions are required to create and delete rules that provide contact records related to Voice ID. @@ -141 +141 @@ The custom policy configures the following: -Amazon Connect Voice ID does not have a default encryption option, so you must allow the following API operations in the key policy to use your customer-managed key. Additionally, you need to grant these permissions on the relevant key, as they are not included in the managed policy. +Connect Customer Voice ID does not have a default encryption option, so you must allow the following API operations in the key policy to use your customer-managed key. Additionally, you need to grant these permissions on the relevant key, as they are not included in the managed policy. @@ -145 +145 @@ Amazon Connect Voice ID does not have a default encryption option, so you must a - * `kms:CreateGrant` – when creating or updating a domain, used to create a grant to the customer managed key for the Voice ID domain. The grant controls access to the specified KMS key which allows access to [grant operations](https://docs.aws.amazon.com/kms/latest/developerguide/grants.html#terms-grant-operations) Amazon Connect Voice ID requires. For more information about using grants, see [Using grants](https://docs.aws.amazon.com/kms/latest/developerguide/grants.html) in the _AWS Key Management Service Developer Guide_. + * `kms:CreateGrant` – when creating or updating a domain, used to create a grant to the customer managed key for the Voice ID domain. The grant controls access to the specified KMS key which allows access to [grant operations](https://docs.aws.amazon.com/kms/latest/developerguide/grants.html#terms-grant-operations) Connect Customer Voice ID requires. For more information about using grants, see [Using grants](https://docs.aws.amazon.com/kms/latest/developerguide/grants.html) in the _AWS Key Management Service Developer Guide_. @@ -152 +152 @@ Amazon Connect Voice ID does not have a default encryption option, so you must a -For more about creating domains and KMS keys, see [Get started enabling Voice ID in Amazon Connect](./enable-voiceid.html) and [Encryption at rest in Amazon Connect](./encryption-at-rest.html). +For more about creating domains and KMS keys, see [Get started enabling Voice ID in Connect Customer](./enable-voiceid.html) and [Encryption at rest in Connect Customer](./encryption-at-rest.html). @@ -156 +156 @@ For more about creating domains and KMS keys, see [Get started enabling Voice ID -The `CustomerProfilesServiceLinkedRolePolicy` role permissions policy allows Amazon Connect to perform various actions on specified resources. As you enable additional features in Amazon Connect, additional permissions are added for the [AWSServiceRoleForProfile](./customerprofiles-slr.html#slr-permissions-customerprofiles) service-linked role to access the resources associated with those features. +The `CustomerProfilesServiceLinkedRolePolicy` role permissions policy allows Connect Customer to perform various actions on specified resources. As you enable additional features in Amazon Connect, additional permissions are added for the [AWSServiceRoleForProfile](./customerprofiles-slr.html#slr-permissions-customerprofiles) service-linked role to access the resources associated with those features. @@ -162 +162 @@ To view the permissions for this policy, see [CustomerProfilesServiceLinkedRoleP -The `AmazonConnectSynchronizationServiceRolePolicy` permissions policy allows Amazon Connect Managed Synchronization to perform various actions on specified resources. As resource synchronization is enabled for more resources, additional permissions are added to the [AWSServiceRoleForAmazonConnectSynchronization](./managed-synchronization-slr.html#slr-permissions-managed-synchronization) service-linked role to access these resources. +The `AmazonConnectSynchronizationServiceRolePolicy` permissions policy allows Connect Customer Managed Synchronization to perform various actions on specified resources. As resource synchronization is enabled for more resources, additional permissions are added to the [AWSServiceRoleForAmazonConnectSynchronization](./managed-synchronization-slr.html#slr-permissions-managed-synchronization) service-linked role to access these resources. @@ -166 +166 @@ To view the permissions for this policy, see [AmazonConnectSynchronizationServic -## Amazon Connect updates to AWS managed policies +## Connect Customer updates to AWS managed policies @@ -168 +168 @@ To view the permissions for this policy, see [AmazonConnectSynchronizationServic -View details about updates to AWS managed policies for Amazon Connect since this service began tracking these changes. For automatic alerts about changes to this page, subscribe to the RSS feed on the [Amazon Connect Document history](./doc-history.html) page. +View details about updates to AWS managed policies for Connect Customer since this service began tracking these changes. For automatic alerts about changes to this page, subscribe to the RSS feed on the [Connect Customer Document history](./doc-history.html) page. @@ -194 +194 @@ The AWS End User Messaging Social template APIs are restricted to WhatsApp busin -[AmazonConnectServiceLinkedRolePolicy](./connect-slr.html) – Added actions for Amazon Connect Customer Profiles | Added the following Amazon Connect Customer Profiles actions to the service-linked role policy below the **AllowCustomerProfilesForConnectDomain** Sid. Also, added support for profile UploadJobs on all amazon-connect-* resources, and not just “upload-jobs” resources: +[AmazonConnectServiceLinkedRolePolicy](./connect-slr.html) – Added actions for Connect Customer Customer Profiles | Added the following Connect Customer Customer Profiles actions to the service-linked role policy below the **AllowCustomerProfilesForConnectDomain** Sid. Also, added support for profile UploadJobs on all amazon-connect-* resources, and not just “upload-jobs” resources: @@ -209 +209 @@ The AWS End User Messaging Social template APIs are restricted to WhatsApp busin -[AmazonConnectServiceLinkedRolePolicy](./connect-slr.html) – Added actions for Amazon Connect Customer Profiles | Added the following Amazon Connect Customer Profiles actions to the service-linked role policy: +[AmazonConnectServiceLinkedRolePolicy](./connect-slr.html) – Added actions for Connect Customer Customer Profiles | Added the following Connect Customer Customer Profiles actions to the service-linked role policy: @@ -220 +220 @@ The AWS End User Messaging Social template APIs are restricted to WhatsApp busin -[AmazonConnectServiceLinkedRolePolicy](./connect-slr.html) – Added actions for Amazon Connect Customer Profiles | Added the following Customer Profiles actions to the service-linked role policy: +[AmazonConnectServiceLinkedRolePolicy](./connect-slr.html) – Added actions for Connect Customer Customer Profiles | Added the following Customer Profiles actions to the service-linked role policy: @@ -230 +230 @@ The AWS End User Messaging Social template APIs are restricted to WhatsApp busin -[AmazonConnectServiceLinkedRolePolicy](./connect-slr.html) – Added actions for Connect AI agents, to support messaging | Added the following Connect AI agents actions to the service-linked role policy to support messaging. These actions allow Amazon Connect to send, list, and get the next message by using the Connect AI agents API: +[AmazonConnectServiceLinkedRolePolicy](./connect-slr.html) – Added actions for Connect AI agents, to support messaging | Added the following Connect AI agents actions to the service-linked role policy to support messaging. These actions allow Connect Customer to send, list, and get the next message by using the Connect AI agents API: @@ -269 +269 @@ The AWS End User Messaging Social template APIs are restricted to WhatsApp busin -[AmazonConnectServiceLinkedRolePolicy](./connect-slr.html) – Added action for Amazon Pinpoint, to support push notifications | Added the following Amazon Pinpoint action to the service-linked role policy to support push notifications. This action allows Amazon Connect to send push notifications by using the Amazon Pinpoint API: +[AmazonConnectServiceLinkedRolePolicy](./connect-slr.html) – Added action for Amazon Pinpoint, to support push notifications | Added the following Amazon Pinpoint action to the service-linked role policy to support push notifications. This action allows Connect Customer to send push notifications by using the Amazon Pinpoint API: @@ -274 +274 @@ The AWS End User Messaging Social template APIs are restricted to WhatsApp busin -[AmazonConnectServiceLinkedRolePolicy](./connect-slr.html) – Added actions for integration with AWS End User Messaging Social | Added the following AWS End User Messaging Social actions to the service-linked role policy. The actions allow Amazon Connect to invoke these APIs on End User Messaging Social phone numbers that have the `'AmazonConnectEnabled':'True'` resource tag. +[AmazonConnectServiceLinkedRolePolicy](./connect-slr.html) – Added actions for integration with AWS End User Messaging Social | Added the following AWS End User Messaging Social actions to the service-linked role policy. The actions allow Connect Customer to invoke these APIs on End User Messaging Social phone numbers that have the `'AmazonConnectEnabled':'True'` resource tag. @@ -282 +282 @@ The AWS End User Messaging Social template APIs are restricted to WhatsApp busin -[AmazonConnectServiceLinkedRolePolicy](./connect-slr.html) – Added actions for Amazon SES, to support the email channel | Added the following Amazon SES actions to the service-linked role policy to support the email channel. These actions allow Amazon Connect send, receive, and manage emails by using the Amazon SES APIs: +[AmazonConnectServiceLinkedRolePolicy](./connect-slr.html) – Added actions for Amazon SES, to support the email channel | Added the following Amazon SES actions to the service-linked role policy to support the email channel. These actions allow Connect Customer send, receive, and manage emails by using the Amazon SES APIs: @@ -291 +291 @@ The AWS End User Messaging Social template APIs are restricted to WhatsApp busin -AmazonConnectServiceLinkedRolePolicy – Added Actions for Amazon Connect Customer Profiles | Added the following actions to manage Amazon Connect Customer Profiles resources: +AmazonConnectServiceLinkedRolePolicy – Added Actions for Connect Customer Customer Profiles | Added the following actions to manage Connect Customer Customer Profiles resources: @@ -309 +309 @@ CustomerProfilesServiceLinkedRolePolicy – Added permissions for managing outbo -AmazonConnectServiceLinkedRolePolicy – Added Actions for Amazon Connect Customer Profiles and Connect AI agents | Added the following actions to manage Amazon Connect Customer Profiles resources: +AmazonConnectServiceLinkedRolePolicy – Added Actions for Connect Customer Customer Profiles and Connect AI agents | Added the following actions to manage Connect Customer Customer Profiles resources: @@ -343 +343 @@ Added the following actions to manage Connect AI agents resources: -AmazonConnectCampaignsServiceLinkedRolePolicy – Added Actions for Amazon Connect Customer Profiles and Connect AI agents | Added the following actions to manage Amazon Connect resources: +AmazonConnectCampaignsServiceLinkedRolePolicy – Added Actions for Connect Customer Customer Profiles and Connect AI agents | Added the following actions to manage Connect Customer resources: @@ -370 +370 @@ AmazonConnectSynchronizationServiceRolePolicy – Consolidated allowed actions a -[AmazonConnectServiceLinkedRolePolicy](./connect-slr.html) – Added actions for Amazon Chime SDK Voice Connector | Added the following Amazon Chime SDK Voice Connector actions to the service-linked role policy. These actions allow Amazon Connect to obtain Amazon Chime Voice Connector information by using get and list Amazon Chime SDK Voice Connector APIs: +[AmazonConnectServiceLinkedRolePolicy](./connect-slr.html) – Added actions for Amazon Chime SDK Voice Connector | Added the following Amazon Chime SDK Voice Connector actions to the service-linked role policy. These actions allow Connect Customer to obtain Amazon Chime Voice Connector information by using get and list Amazon Chime SDK Voice Connector APIs: @@ -372,2 +372,2 @@ AmazonConnectSynchronizationServiceRolePolicy – Consolidated allowed actions a - * `chime:GetVoiceConnector`: Allows Amazon Connect to invoke the [GetVoiceConnector](https://docs.aws.amazon.com/chime-sdk/latest/APIReference/API_voice-chime_GetVoiceConnector.html) API on any Amazon Chime SDK Voice Connectors that have an `'AmazonConnectEnabled':'True'` resource tag. - * `chime:ListVoiceConnectors`: Allows Amazon Connect to list all Amazon Chime SDK Voice Connectors created in the account across all Regions. + * `chime:GetVoiceConnector`: Allows Connect Customer to invoke the [GetVoiceConnector](https://docs.aws.amazon.com/chime-sdk/latest/APIReference/API_voice-chime_GetVoiceConnector.html) API on any Amazon Chime SDK Voice Connectors that have an `'AmazonConnectEnabled':'True'` resource tag. + * `chime:ListVoiceConnectors`: Allows Connect Customer to list all Amazon Chime SDK Voice Connectors created in the account across all Regions. @@ -401,2 +401,2 @@ AmazonConnectSynchronizationServiceRolePolicy – Added for Managed Synchronizat -AmazonConnectReadOnlyAccess – Renamed action `connect:GetFederationTokens` and changed to `connect:AdminGetEmergencyAccessToken` | The AmazonConnectReadOnlyAccess managed policy has been updated due to the renaming of the Amazon Connect action `connect:GetFederationTokens` to `connect:AdminGetEmergencyAccessToken`. This change is backwards compatible and the `connect:AdminGetEmergencyAccessToken` action will function in the same way as the `connect:GetFederationTokens` action. If you leave the previously named `connect:GetFederationTokens` action in your policies, they will continue to function as expected. | June 15, 2024 -[AmazonConnectServiceLinkedRolePolicy](./connect-slr.html) – Added actions for Amazon Cognito user pools and Amazon Connect Customer Profiles | Added the following Amazon Cognito user pools actions to the service-linked role policy to allow select read operations on Cognito User Pool User Pool resources that have an `AmazonConnectEnabled` resource tag. This tag is put on the resource when the `CreateIntegrationAssociations` API is called: +AmazonConnectReadOnlyAccess – Renamed action `connect:GetFederationTokens` and changed to `connect:AdminGetEmergencyAccessToken` | The AmazonConnectReadOnlyAccess managed policy has been updated due to the renaming of the Connect Customer action `connect:GetFederationTokens` to `connect:AdminGetEmergencyAccessToken`. This change is backwards compatible and the `connect:AdminGetEmergencyAccessToken` action will function in the same way as the `connect:GetFederationTokens` action. If you leave the previously named `connect:GetFederationTokens` action in your policies, they will continue to function as expected. | June 15, 2024 +[AmazonConnectServiceLinkedRolePolicy](./connect-slr.html) – Added actions for Amazon Cognito user pools and Connect Customer Customer Profiles | Added the following Amazon Cognito user pools actions to the service-linked role policy to allow select read operations on Cognito User Pool User Pool resources that have an `AmazonConnectEnabled` resource tag. This tag is put on the resource when the `CreateIntegrationAssociations` API is called: @@ -407 +407 @@ AmazonConnectReadOnlyAccess – Renamed action `connect:GetFederationTokens` and -Added the following Amazon Connect Customer Profiles action to the service-linked role policy to allow permissions to put data into the Connect-adjacent service, Customer Profiles: +Added the following Connect Customer Customer Profiles action to the service-linked role policy to allow permissions to put data into the Connect-adjacent service, Customer Profiles: @@ -417 +417 @@ Added the following Amazon Connect Customer Profiles action to the service-linke -[AmazonConnectServiceLinkedRolePolicy](./connect-slr.html) – Added actions for Amazon Pinpoint | Added the following actions to the service-linked role policy to use Amazon Pinpoint phone numbers to allow Amazon Connect to send SMS: +[AmazonConnectServiceLinkedRolePolicy](./connect-slr.html) – Added actions for Amazon Pinpoint | Added the following actions to the service-linked role policy to use Amazon Pinpoint phone numbers to allow Connect Customer to send SMS: @@ -428 +428 @@ Added the following Amazon Connect Customer Profiles action to the service-linke -[AmazonConnectCampaignsServiceLinkedRolePolicy](./connect-slr-outbound.html#slr-permissions-outbound) – Added actions for Amazon Connect | Amazon Connect added new actions to retrieve outbound campaigns: +[AmazonConnectCampaignsServiceLinkedRolePolicy](./connect-slr-outbound.html#slr-permissions-outbound) – Added actions for Connect Customer | Connect Customer added new actions to retrieve outbound campaigns: @@ -434,2 +434,2 @@ Added the following Amazon Connect Customer Profiles action to the service-linke -AmazonConnectSynchronizationServiceRolePolicy – Added new AWS managed policy | Added a new service-linked role managed policy for managed synchronization. The policy provides access to read, create, update, and delete Amazon Connect resources and is used to automatically synchronize AWS resources across AWS regions. | November 3, 2023 -AmazonConnectServiceLinkedRolePolicy – Added actions for Customer Profiles | Added the following action to manage Amazon Connect Customer Profiles Service Linked Roles: +AmazonConnectSynchronizationServiceRolePolicy – Added new AWS managed policy | Added a new service-linked role managed policy for managed synchronization. The policy provides access to read, create, update, and delete Connect Customer resources and is used to automatically synchronize AWS resources across AWS regions. | November 3, 2023 +AmazonConnectServiceLinkedRolePolicy – Added actions for Customer Profiles | Added the following action to manage Connect Customer Customer Profiles Service Linked Roles: @@ -459 +459 @@ AmazonConnectServiceLinkedRolePolicy – Added actions for Customer Profiles | -[AmazonConnectServiceLinkedRolePolicy](./connect-slr.html) – Added actions for Customer Profiles | Added the following action to manage Amazon Connect Customer Profiles Service Linked Roles: +[AmazonConnectServiceLinkedRolePolicy](./connect-slr.html) – Added actions for Customer Profiles | Added the following action to manage Connect Customer Customer Profiles Service Linked Roles: @@ -489 +489 @@ CustomerProfilesServiceLinkedRolePolicy – Added CustomerProfilesServiceLinkedR -AmazonConnect_FullAccess – Added permission for managing Amazon Connect Customer Profiles Service Linked Roles | Added the following action to manage Amazon Connect Customer Profiles Service Linked Roles. +AmazonConnect_FullAccess – Added permission for managing Connect Customer Customer Profiles Service Linked Roles | Added the following action to manage Connect Customer Customer Profiles Service Linked Roles. @@ -494 +494 @@ AmazonConnect_FullAccess – Added permission for managing Amazon Connect Custom -[AmazonConnectServiceLinkedRolePolicy](./connect-slr.html) – Added actions for Amazon CloudWatch | Added the following action to publish usage Amazon Connect metrics for an instance to your account. +[AmazonConnectServiceLinkedRolePolicy](./connect-slr.html) – Added actions for Amazon CloudWatch | Added the following action to publish usage Connect Customer metrics for an instance to your account. @@ -499 +499 @@ AmazonConnect_FullAccess – Added permission for managing Amazon Connect Custom -AmazonConnect_FullAccess – Added permissions for managing Amazon Connect Customer Profiles domains | Added all permissions for managing Amazon Connect Customer Profiles domains that are created for new Amazon Connect instances. +AmazonConnect_FullAccess – Added permissions for managing Connect Customer Customer Profiles domains | Added all permissions for managing Connect Customer Customer Profiles domains that are created for new Connect Customer instances. @@ -504 +504 @@ AmazonConnect_FullAccess – Added permissions for managing Amazon Connect Custo - * `profile:ListProfileObjectTypeTemplates` \- Allow the Amazon Connect console to display a list of templates that you can use to create your data mappings. + * `profile:ListProfileObjectTypeTemplates` \- Allow the Connect Customer console to display a list of templates that you can use to create your data mappings. @@ -526 +526 @@ The following permissions are allowed to be performed on domains with a name tha - * `profile:PutIntegration` \- Allows you to add an integration between the service and a third-party service which includes Amazon AppFlow and Amazon Connect + * `profile:PutIntegration` \- Allows you to add an integration between the service and a third-party service which includes Amazon AppFlow and Connect Customer @@ -536 +536 @@ The following permissions are allowed to be performed on domains with a name tha -[AmazonConnectServiceLinkedRolePolicy](./connect-slr.html) – Added actions for Amazon Connect Customer Profiles | Added the following actions so Amazon Connect flows and the agent experience can interact with the profiles in your default Customer Profiles domain: +[AmazonConnectServiceLinkedRolePolicy](./connect-slr.html) – Added actions for Connect Customer Customer Profiles | Added the following actions so Connect Customer flows and the agent experience can interact with the profiles in your default Customer Profiles domain: @@ -543 +543 @@ The following permissions are allowed to be performed on domains with a name tha -Added the following action so Amazon Connect flows and the agent experience can interact with the profile objects in your default Customer Profiles domain: +Added the following action so Connect Customer flows and the agent experience can interact with the profile objects in your default Customer Profiles domain: @@ -547 +547 @@ Added the following action so Amazon Connect flows and the agent experience can -Added the following action so Amazon Connect flows and the agent experience can determine whether Customer Profiles is enabled for your Amazon Connect instance: +Added the following action so Connect Customer flows and the agent experience can determine whether Customer Profiles is enabled for your Connect Customer instance: @@ -552 +552 @@ Added the following action so Amazon Connect flows and the agent experience can -AmazonConnectVoiceIDFullAccess – Added new AWS managed policy | Added a new AWS managed policy so you can set up your users to use Amazon Connect Voice ID. This policy provides full access to Amazon Connect Voice ID through the AWS console, SDK, or other means. | September 27, 2021 +AmazonConnectVoiceIDFullAccess – Added new AWS managed policy | Added a new AWS managed policy so you can set up your users to use Connect Customer Voice ID. This policy provides full access to Connect Customer Voice ID through the AWS console, SDK, or other means. | September 27, 2021 @@ -566 +566 @@ AmazonConnectVoiceIDFullAccess – Added new AWS managed policy | Added a new A -Amazon Connect started tracking changes | Amazon Connect started tracking changes for its AWS managed policies. | June 15, 2021 +Connect Customer started tracking changes | Connect Customer started tracking changes for its AWS managed policies. | June 15, 2021