IAM role for an Amazon Q Business web experience

Note

If you are using permissions for Amazon Q Apps created prior to July 10, 2024, you must update your role with the new Amazon Q Apps permissions for your users to have access to use the permissions to view and specify approved data sources and other future features in Q Apps.

To allow Amazon Q to invoke the API operations required to integrate your application environment, deploy your chat web experience, use an external IdP, and use Amazon Q Apps you must use the following IAM policies.

Topics

IAM role for an Amazon Q Business web experience using IAM Identity Center
IAM role for an Amazon Q Business web experience using IAM Federation
IAM permissions for using Amazon Q Apps

Warning Javascript is disabled or is unavailable in your browser.

To use the Amazon Web Services Documentation, Javascript must be enabled. Please refer to your browser's Help pages for instructions.

Document Conventions

Amazon Q Business application

IAM Identity Center web experience